a9f158ea212c9b5eeb23deb21ca92dcb_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a9f158ea212c9b5eeb23deb21ca92dcb_JaffaCakes118
Size

256KB
MD5

a9f158ea212c9b5eeb23deb21ca92dcb
SHA1

0a74b70efef52efc1c9c7e42413f0e8082ea8a07
SHA256

4d164cf1a732917a5a064ce19440d365e153195761329edfff5030c7f5b3b60f
SHA512

91eaad6ba125759e052aaa72d5a0dd14b2133e53bdfa7ece601fad8e3d22884f20f4c4a659777e3e255d8364379ec1b38399dde633d6ddf91fe6a329c7a22adb
SSDEEP

6144:fJDvsJpK101ie7XRXKnxUo7ded+LZqTggDJY7zcss:BgTLRX+rgT1Du7ws

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a9f158ea212c9b5eeb23deb21ca92dcb_JaffaCakes118

Files

a9f158ea212c9b5eeb23deb21ca92dcb_JaffaCakes118
.dll windows:4 windows x86 arch:x86

32698a8660e9425fd6a850f7a41d087c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

SendMessageTimeoutW
SendDlgItemMessageW
PeekMessageW
OffsetRect
LoadMenuW
LoadIconW
SendMessageW
GetMonitorInfoW
GetDC
GetAsyncKeyState
GetActiveWindow
FindWindowW
EnableWindow
DefWindowProcW
CharToOemBuffA
SetCursor
SetFocus
SetRect
UpdateWindow
WinHelpW
GetNextDlgTabItem
CallNextHookEx

ole32

OleRegGetUserType
OleInitialize
CreateILockBytesOnHGlobal
CoTaskMemFree
CLSIDFromString
ReleaseStgMedium
StgCreateDocfileOnILockBytes
StringFromCLSID
OleUninitialize

gdi32

RectVisible
GetTextMetricsW
GetTextExtentPoint32W
GetTextColor
GetStockObject
GetPaletteEntries
Rectangle
GetDeviceCaps
GetBkColor
ExtTextOutW
Escape
DeleteObject
DPtoLP
CreateSolidBrush
ScaleWindowExtEx
SelectObject
SetBkMode
SetDCBrushColor
SetPixel
SetTextColor
TextOutW
GetObjectW
PtVisible
CreatePen
CreateCompatibleDC
CreateDCW
CreateFontIndirectW
CreateICW

kernel32

GetShortPathNameW
GetSystemTimeAsFileTime
GetUserDefaultLCID
GetVersionExA
GlobalAddAtomW
GlobalAlloc
GlobalFree
GlobalGetAtomNameW
HeapAlloc
HeapCreate
InterlockedIncrement
LoadLibraryExA
LoadLibraryExW
GetLastError
LoadLibraryW
MulDiv
MultiByteToWideChar
SetThreadPriority
SetUnhandledExceptionFilter
TerminateProcess
lstrcmpW
lstrlenW
GetModuleHandleA
AddAtomW
CreateEventW
CreateFileW
DeleteAtom
ExitProcess
GetCommandLineA
GetCurrentThreadId
GetDateFormatW

msvcrt

_onexit
_wcsdup
exit
memmove
setlocale
wcscmp
wcscoll
wcslen
_initterm
__wgetmainargs
__setusermatherr
__set_app_type
__p__fmode
__p__commode
__dllonexit
__CxxFrameHandler
_XcptFilter
_controlfp
_cexit
_c_exit
wcstod
_adjust_fdiv

shlwapi

PathFindFileNameW

shell32

DragFinish
DragQueryFileW
SHGetSettings
SHGetSpecialFolderPathW
ShellAboutW
ShellExecuteExW

advapi32

RegCloseKey
RegDeleteKeyW
RegOpenKeyExA
RegOpenKeyExW
RegQueryValueExA
RegQueryValueExW
RegSetValueExW
RegCreateKeyExW

comdlg32

CommDlgExtendedError
GetOpenFileNameW
GetSaveFileNameW
ChooseFontW

Exports

Exports

D3D10ResourceGetMappedPitch
DevelopLogPosToNormalPos
EnumRelCamSettingReset
GLUnregisterBufferObject
GetDevSplineArray
GetExtractJpegSize_ByModelName
GetIIMInfoCount
GetSplineArrayEx
GraphicsResourceGetMappedPointer
HostAlloc
Memcpy2DFromArray

Sections

.text
Size: 172KB - Virtual size: 172KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

32698a8660e9425fd6a850f7a41d087c

Headers

File Characteristics

Imports

user32

ole32

gdi32

kernel32

msvcrt

shlwapi

shell32

advapi32

comdlg32

Exports

Exports

Sections

.text Size: 172KB - Virtual size: 172KB

.data Size: 72KB - Virtual size: 104KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 172KB - Virtual size: 172KB

.data
Size: 72KB - Virtual size: 104KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 4KB - Virtual size: 4KB