afb10a1ab23ae6a5e7258c48fd08da74_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

afb10a1ab23ae6a5e7258c48fd08da74_JaffaCakes118
Size

126KB
MD5

afb10a1ab23ae6a5e7258c48fd08da74
SHA1

330e8d36fe696d7258db0aafb7e46601e2df5d93
SHA256

b1d154d88e8842c2e86372a9e1bc39ace5a55371528c47bec06c721985483604
SHA512

09eb8be7c366bbb15b6f841e0a5a0d806ce2a46d927e6bcdc03d681dd8dd580d6da6dc9b07f351582f8d24154031c51651d1d5e5b0ca443af237f769c8b9193e
SSDEEP

3072:Mdo+4X2zd53LnJWhrexVlRMF6gUICo/s6w3ZbOnZ:bLgeaxVjrgUICp2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
afb10a1ab23ae6a5e7258c48fd08da74_JaffaCakes118

Files

afb10a1ab23ae6a5e7258c48fd08da74_JaffaCakes118
.dll windows:4 windows x86 arch:x86

04d7eea1f0551f712d5cf6d6e0c2735b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

ResumeThread
CompareFileTime
GetTickCount
TerminateProcess
AssignProcessToJobObject
CreateProcessW
DeleteTimerQueueTimer
CreateTimerQueueTimer
CreateThread
GetModuleFileNameW
LocalAlloc
LocalFree
SetLastError
FormatMessageW
WaitForSingleObject
VirtualUnlock
SetThreadPriority
HeapSize
HeapAlloc
GetLastError
HeapCreate
MultiByteToWideChar
GetFileAttributesW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InterlockedIncrement
GetModuleHandleW
GetModuleHandleA
GetProcAddress
GetVersion
OutputDebugStringA
CreateJobObjectW
GetCommandLineW
TerminateJobObject
ResetEvent
InterlockedDecrement
GetSystemTimeAsFileTime
CompareStringW
GetShortPathNameW
ExpandEnvironmentStringsW
GetCurrentProcessId
WaitForSingleObjectEx
InterlockedExchange
UnregisterWaitEx
Sleep
CreateEventW
SetEvent
CloseHandle
HeapDestroy
GetProcessHeap
HeapFree
GetCommandLineA
VirtualFree
VirtualProtect
GetCurrentProcess
VirtualAlloc

user32

GetWindowRect
ScreenToClient
MoveWindow
KillTimer
LoadStringW
SetWindowTextW
IsWindow
IsRectEmpty
DestroyWindow
SystemParametersInfoW
GetWindowLongW
EnableWindow
GetWindowTextLengthW
SetFocus
GetDlgItemTextW
DestroyIcon
SetRect
GetClientRect
SendDlgItemMessageW
GetDlgItem
SetDlgItemTextW
GetSystemMetrics
LoadImageW
SetWindowLongW
GetAncestor
GetParent
PostMessageW
CopyIcon
CloseDesktop
MessageBoxW
ExitWindowsEx
ShowWindow
SendMessageW

advapi32

LsaFreeMemory
RegSetValueExW
RegEnumValueW
RegDeleteValueW
UnregisterTraceGuids
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
NotifyBootConfigStatus
RegCreateKeyExW
DeregisterEventSource
RegisterEventSourceW
ImpersonateLoggedOnUser
RevertToSelf
TraceMessage
GetTokenInformation

gdi32

SetTextColor
SetROP2
GetStockObject
SetBkMode
SelectObject
Rectangle
DeleteObject

ole32

CoGetObject
CoTaskMemFree
PropVariantClear
CoCreateInstance
CoUninitialize

rpcrt4

UuidFromStringW
I_RpcMapWin32Status
RpcAsyncCompleteCall
RpcBindingFree
NdrClientCall2
RpcStringFreeW
RpcMgmtIsServerListening
RpcAsyncCancelCall
RpcAsyncInitializeHandle

msvcr71

_except_handler3
free
abs
wcstok
wcschr
_wcsicmp
memmove
_vsnwprintf
memset
memcpy
wcstoul
wcstol
_initterm
malloc
_adjust_fdiv
__CppXcptFilter
__dllonexit
_onexit

Sections

.text
Size: 79KB - Virtual size: 78KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sxdata
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

04d7eea1f0551f712d5cf6d6e0c2735b

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

ole32

rpcrt4

msvcr71

Sections

.text Size: 79KB - Virtual size: 78KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 35KB - Virtual size: 68KB

.sxdata Size: 512B - Virtual size: 8B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 79KB - Virtual size: 78KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 35KB - Virtual size: 68KB

.sxdata
Size: 512B - Virtual size: 8B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 5KB - Virtual size: 4KB