a739f4b2ac49c9d46cbc0f9e5e1425fc_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

a739f4b2ac49c9d46cbc0f9e5e1425fc_JaffaCakes118
Size

110KB
MD5

a739f4b2ac49c9d46cbc0f9e5e1425fc
SHA1

059efc7e76228622ed2288817c5c60e420923122
SHA256

72ab88e2c9f144febdb78a2129730bdab22b91aa591893db9187a48125a8b051
SHA512

645c46ac9db05c6688cd31f2b456e4c60a8e5c7c549a0fd8edc5116cd7e25dca41bfb863e647ee612086f7b78d64f87173d06c47738c3dbdfa4918e8f2efe6d6
SSDEEP

3072:Apd2jRIRWxyeFF9w3qcE86nw9dO6u4M1F/N1:y2ji0HFAxE88w9dO6eFV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a739f4b2ac49c9d46cbc0f9e5e1425fc_JaffaCakes118

Files

a739f4b2ac49c9d46cbc0f9e5e1425fc_JaffaCakes118
.dll windows:5 windows x86 arch:x86

3acefabb560d929c8903d72b98b51d61

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

strlen
srand
rand
memset
memmove
memcpy
memcmp
malloc
free
exit
_wcsicmp
_purecall
_onexit
wcslen
_exit
_except_handler3
_controlfp
_beginthreadex
_adjust_fdiv
__setusermatherr
__set_app_type
__p__fmode
__p__commode
__getmainargs
__dllonexit
__CxxFrameHandler
_XcptFilter
wcsncmp
_initterm
_CxxThrowException

user32

MapDialogRect
MapVirtualKeyA
MessageBoxW
ModifyMenuW
NotifyWinEvent
OpenClipboard
PostMessageA
PostQuitMessage
RegisterClassA
RemoveMenu
SendMessageW
SetDebugErrorLevel
SetMenu
SetMenuItemInfoW
SetTimer
InvalidateRect
SetWindowLongW
SetWindowTextW
ShowScrollBar
ShowWindow
TileWindows
TrackPopupMenuEx
InsertMenuItemA
TranslateAcceleratorW
TranslateMDISysAccel
TranslateMessage
UpdateLayeredWindow
UpdateWindow
wsprintfA
LockSetForegroundWindow
LoadIconA
LoadCursorA
LoadBitmapA
LoadAcceleratorsW
LoadAcceleratorsA
KillTimer
IsZoomed
IsDlgButtonChecked
IsWindowEnabled
SetWindowLongA
GetWindowTextW
GetWindowTextA
GetWindowPlacement
GetWindowLongA
GetUserObjectInformationA
GetTitleBarInfo
GetSubMenu
GetMenuItemInfoW
GetMenuItemInfoA
GetMenuItemCount
GetKeyState
GetInputState
GetGUIThreadInfo
GetDlgItem
GetClientRect
GetClassInfoW
GetClassInfoA
GetCapture
FlashWindowEx
FindWindowA
EndPaint
EnableWindow
EmptyClipboard
DrawStateW
DrawMenuBar
DispatchMessageW
DestroyWindow
DestroyMenu
DestroyIcon
DestroyAcceleratorTable
DdeGetLastError
DdeConnectList
CreateWindowExW
CreateWindowExA
CreateMenu
CreateIconIndirect
CreateAcceleratorTableA
CheckMenuRadioItem
CheckMenuItem
CheckDlgButton
CharUpperW
CharUpperA
CharPrevA
CharLowerW
CharLowerA
CallWindowProcA
LookupIconIdFromDirectory
TranslateAcceleratorA

shell32

SheChangeDirA
ShellExecuteA
SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHGetMalloc
SHGetFileInfoA
SHGetDesktopFolder
SHFileOperationA
SHChangeNotify
SHBrowseForFolderA

advapi32

GetUserNameW
RegCreateKeyExA
RegDeleteKeyA
RegEnumKeyExA
RegOpenKeyExA
RegQueryValueExA
RegQueryValueExW
RegSetValueExA
RegSetValueExW
RegCloseKey

kernel32

SetLastError
SetFilePointer
SetEvent
SetEndOfFile
RemoveDirectoryA
ReadFile
MultiByteToWideChar
MapViewOfFile
LocalFree
LoadLibraryA
InterlockedIncrement
HeapAlloc
GlobalUnlock
GlobalSize
GlobalLock
GlobalFree
GlobalAlloc
GetWindowsDirectoryA
GetVolumeInformationW
GetVolumeInformationA
GetTempPathW
GetSystemTime
GetStartupInfoA
GetProcessHeap
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
SetPriorityClass
GetLastError
GetFullPathNameA
GetFileSize
GetExitCodeThread
GetDriveTypeA
GetDiskFreeSpaceA
GetCurrentProcess
FormatMessageA
FindNextFileA
FindNextChangeNotification
FindFirstFileA
FindFirstChangeNotificationA
FindCloseChangeNotification
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
FileTimeToDosDateTime
ExitThread
ExitProcess
DeviceIoControl
DeleteFileA
DeleteCriticalSection
CreateFileA
CreateDirectoryA
CopyFileW
CopyFileA
CompareFileTime
SystemTimeToFileTime
UnmapViewOfFile
VirtualAlloc
VirtualFree
VirtualProtect
WaitForSingleObject
WideCharToMultiByte
lstrcatA
GetLogicalDriveStringsA
GetUserDefaultLangID
GetVersionExA
GetTickCount

comdlg32

PageSetupDlgA
GetFileTitleA
PrintDlgA

ole32

CoInitialize
CoTaskMemAlloc
CoTaskMemFree
CoUninitialize
DoDragDrop
OleInitialize
OleUninitialize
RegisterDragDrop
ReleaseStgMedium
RevokeDragDrop

Sections

.text
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 66KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3acefabb560d929c8903d72b98b51d61

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

user32

shell32

advapi32

kernel32

comdlg32

ole32

Sections

.text Size: 23KB - Virtual size: 24KB

.rdata Size: 66KB - Virtual size: 68KB

.data Size: 17KB - Virtual size: 20KB

.rsrc Size: 1KB - Virtual size: 4KB

.text
Size: 23KB - Virtual size: 24KB

.rdata
Size: 66KB - Virtual size: 68KB

.data
Size: 17KB - Virtual size: 20KB

.rsrc
Size: 1KB - Virtual size: 4KB