abc4625801f9b27976be77557052da27_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

abc4625801f9b27976be77557052da27_JaffaCakes118
Size

202KB
MD5

abc4625801f9b27976be77557052da27
SHA1

c4f2e94770a6088b058385bd0eb1c7945da56e92
SHA256

58302ab4e9adc30ef91c7a9e888c1398967a3bbb19a070294d3946446677e400
SHA512

cd3c4977b6d08e62653e5279d2882271a34d9d7c010a0996301c567a792b8fea6b2660fa3f0fb73d0620e27d975c94f99b06db242d5be15f65620009486204f8
SSDEEP

6144:Oo6qBrKS2OW/PBmaQAB7UxWZEXE1fnFWOBCXFS:nKSgXoaQo7vBdUOB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
abc4625801f9b27976be77557052da27_JaffaCakes118

Files

abc4625801f9b27976be77557052da27_JaffaCakes118
.dll windows:4 windows x86 arch:x86

58591cfc1f83e97c8e48ad3ea3c2169d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateConsoleScreenBuffer
CreateFileA
DisableThreadLibraryCalls
ExitProcess
FindFirstFileA
GetACP
GetCPInfo
GetCommandLineA
GetCurrentDirectoryA
GetCurrentProcessId
GetExitCodeThread
GetFileTime
GetFileType
GetModuleHandleA
GetOEMCP
GetStartupInfoA
GetStdHandle
GetVersionExA
GlobalLock
HeapAlloc
HeapCreate
HeapReAlloc
IsValidCodePage
MultiByteToWideChar
RtlUnwind
SetErrorMode
SetFilePointer
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
TerminateProcess
TlsSetValue
VirtualFree
WideCharToMultiByte
lstrcatA

user32

SystemParametersInfoA
SetForegroundWindow
SetWindowPos
ReleaseDC
ReleaseCapture
PostMessageA
LoadCursorA
IsZoomed
GetWindowTextA
GetDlgItem
CreatePopupMenu
DrawIconEx
EnumChildWindows
CheckMenuRadioItem
RegisterClassExA

advapi32

PrivilegedServiceAuditAlarmW
StartTraceA
RegisterServiceCtrlHandlerExA
RegCreateKeyExW
RegCreateKeyA
AreAnyAccessesGranted
MakeSelfRelativeSD
GetSecurityDescriptorDacl
CryptReleaseContext
EncryptFileA

ole32

CreateAntiMoniker
StringFromGUID2
IsEqualGUID
CoTaskMemFree
CoGetMalloc
CoFileTimeNow
CoCreateInstance
CoCreateGuid
CoBuildVersion
CLSIDFromString

opengl32

glClearIndex
wglGetCurrentDC
wglChoosePixelFormat
glVertex4i
glTexCoord4sv
glTexCoord1dv
glStencilOp
glReadPixels
glPixelTransferf
glLightf
glIndexMask
glDeleteTextures
glDeleteLists
glColorMask
glClear

ddraw

DirectDrawCreateEx

Exports

Exports

GetAFDistanceSetting

Sections

.text
Size: 136KB - Virtual size: 216KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

58591cfc1f83e97c8e48ad3ea3c2169d

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

opengl32

ddraw

Exports

Exports

Sections

.text Size: 136KB - Virtual size: 216KB

.data Size: 60KB - Virtual size: 60KB

.rsrc Size: 3KB - Virtual size: 4KB

.reloc Size: 1KB - Virtual size: 4KB

.text
Size: 136KB - Virtual size: 216KB

.data
Size: 60KB - Virtual size: 60KB

.rsrc
Size: 3KB - Virtual size: 4KB

.reloc
Size: 1KB - Virtual size: 4KB