b2f549d587bbbce033526ca669ed4a2b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b2f549d587bbbce033526ca669ed4a2b_JaffaCakes118
Size

73KB
MD5

b2f549d587bbbce033526ca669ed4a2b
SHA1

65c1bb502112eb39a570e4478a809514d23448e9
SHA256

06cd765837d0d0e8f85ff5dd1b2234e91c46eb1d0101e1afecebd11aeb041b01
SHA512

71ebba5161579e974f23d2cd469eef3258372fc047d7f260c1b49e84f663faa88fbceeab1f43172aee52f1b589cff7e228c2ed0c58c263cf3047c89d62ffd417
SSDEEP

1536:PTC5zPxJosxiHAkEMovTabu/bHYK88USU1X1aK4DlQ:WPD0gkEJvTKGbHYKfu1X1aKA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b2f549d587bbbce033526ca669ed4a2b_JaffaCakes118

Files

b2f549d587bbbce033526ca669ed4a2b_JaffaCakes118
.dll windows:5 windows x86 arch:x86

f88eacd1b3ed6b0747ff83c153f18971

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

comctl32

CreatePropertySheetPageW
ImageList_Draw
ImageList_GetIconSize
ImageList_ReplaceIcon
ImageList_GetIcon
ImageList_Read
ImageList_LoadImageW
ImageList_Write
DestroyPropertySheetPage
CreateStatusWindowW
CreatePropertySheetPageA

msvcrt

getenv
fprintf
calloc
strcoll
setvbuf
isprint
localtime
wcschr
strspn
putchar
memcpy
memset

gdi32

DeleteDC
RectVisible
CreateCompatibleDC
CreateFontW
GetFontData
CreateCompatibleBitmap
GetObjectA
SetViewportExtEx
GetDIBColorTable
SelectPalette
CreateDiscardableBitmap
UpdateColors
EnumFontsW
GetRgnBox
DescribePixelFormat
CreateBrushIndirect
GetMetaFileA
TextOutA

kernel32

MultiByteToWideChar
GetDateFormatA
CreateSemaphoreW
LocalAlloc
GetSystemInfo
LoadLibraryExA
FreeResource
LocalReAlloc
CreateWaitableTimerW
GetCommConfig
CreateMutexA
GetThreadTimes
GetCPInfoExA
LocalSize
LocalFree
LoadLibraryA
SetWaitableTimer
GetLocaleInfoA
GetSystemDirectoryW
SetEndOfFile
GetPrivateProfileIntA
WaitForSingleObject
WaitForSingleObjectEx
GetProcessHeap
CreateNamedPipeW
VerSetConditionMask
FindResourceA
GetTickCount

comdlg32

PageSetupDlgW
ChooseFontW
PrintDlgW
ChooseColorW
GetSaveFileNameA
ReplaceTextW
FindTextW
PrintDlgExW
GetOpenFileNameW

user32

CreateAcceleratorTableA
SetCursorPos
GetMenu
InflateRect
DrawFocusRect
GetUpdateRect
EnumWindows
DialogBoxParamW
SetMenuItemBitmaps
DrawAnimatedRects
GetKeyState
PostThreadMessageW
GetDlgItemTextA
SetCursor
GetWindowLongA
CreatePopupMenu
IsWindowEnabled
DrawIconEx
RemoveMenu
GetPropW
ModifyMenuA
RedrawWindow
GetMenuCheckMarkDimensions
IsDialogMessageW
InsertMenuW
LoadStringW

winspool.drv

DeviceCapabilitiesA

Exports

Exports

_EaXws_bsso_jx@4
_Format_SysMessages@8
_XmQz_Adt_zMyy@12
_ReCalc_Used_Data@12
_ChOas_wbc_il@4
_WtWov_amgah_jqg@12

Sections

.code
Size: 512B - Virtual size: 47KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 688B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f88eacd1b3ed6b0747ff83c153f18971

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

msvcrt

gdi32

kernel32

comdlg32

user32

winspool.drv

Exports

Exports

Sections

.code Size: 512B - Virtual size: 47KB

.text Size: 28KB - Virtual size: 27KB

.rdata Size: 6KB - Virtual size: 6KB

.rsrc Size: 36KB - Virtual size: 36KB

.reloc Size: 1024B - Virtual size: 688B

.code
Size: 512B - Virtual size: 47KB

.text
Size: 28KB - Virtual size: 27KB

.rdata
Size: 6KB - Virtual size: 6KB

.rsrc
Size: 36KB - Virtual size: 36KB

.reloc
Size: 1024B - Virtual size: 688B