adcf5ea0a725f4bb232a30b06192a345_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

adcf5ea0a725f4bb232a30b06192a345_JaffaCakes118
Size

455KB
MD5

adcf5ea0a725f4bb232a30b06192a345
SHA1

ffaeb3afa007279913848c757834692fc9b702c2
SHA256

34540b81a9c3815dba0ece59290a11a7ce5a41582b02a248d9e5dd1a7d296861
SHA512

c3ab7c70cd50b80decac16e243d5153d43b3e10304484bc5536315350d3ea5852e5d186e1f683b16194fa9fb8e7be291e790fcfd88137a0ad2fe57608c6c556d
SSDEEP

6144:jMa+Yjm/W4NS2Fhj2iRSIJMNf/i44nng2xZfAgo0V42oTDrxBLkV4ztlsHJdsU:gaVjm+HSSIef4nQgpV2TDrxRkAtmpd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
adcf5ea0a725f4bb232a30b06192a345_JaffaCakes118

Files

adcf5ea0a725f4bb232a30b06192a345_JaffaCakes118
.dll windows:5 windows x86 arch:x86

ae4667482717dc7b17b199fd9a2f32df

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

TerminateProcess
LoadLibraryA
VirtualProtect
GetModuleFileNameA
ExitProcess

user32

GetDlgItemInt
MessageBoxA

gdi32

CreateFontA

Exports

Exports

BabyWolf
ExtremeWolf
MonsterWolf
OutPut
WTProc
WolfLiteEntry
gtGodMode

Sections

.text
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.LOL1
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.LOL0
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.LOL2
Size: 330KB - Virtual size: 330KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.LOL3
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ae4667482717dc7b17b199fd9a2f32df

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 57KB - Virtual size: 56KB

.rdata Size: 9KB - Virtual size: 9KB

.data Size: 5KB - Virtual size: 11KB

.LOL1 Size: 5KB - Virtual size: 4KB

.LOL0 Size: 5KB - Virtual size: 5KB

.LOL2 Size: 330KB - Virtual size: 330KB

.LOL3 Size: 34KB - Virtual size: 34KB

.reloc Size: 4KB - Virtual size: 3KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 57KB - Virtual size: 56KB

.rdata
Size: 9KB - Virtual size: 9KB

.data
Size: 5KB - Virtual size: 11KB

.LOL1
Size: 5KB - Virtual size: 4KB

.LOL0
Size: 5KB - Virtual size: 5KB

.LOL2
Size: 330KB - Virtual size: 330KB

.LOL3
Size: 34KB - Virtual size: 34KB

.reloc
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 3KB - Virtual size: 2KB