b59b451ff9fad1b79ebf93fface35eda_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b59b451ff9fad1b79ebf93fface35eda_JaffaCakes118
Size

44KB
MD5

b59b451ff9fad1b79ebf93fface35eda
SHA1

5b8a99276ebd6c6f5ea810ed2d3f5c704639a12e
SHA256

d7f31fda193d4681431506149b3f4a0c6e259589ec5171b8270f0f67d27196ee
SHA512

539a32ee203fca72a1eb464a0e1c52a4231a6a8be7b7e6465a38505da43cac9d2fa0eb56cf5694422b24a76ffc1e6aa9e94d2aab2d973d5d2118459e9d7f7eed
SSDEEP

768:gYq1kWG3PxiJ90UmtP1sKP1v+LwX78OpDeu9Sp0IDuXuxpOrYBxjk/Vxp1aBl:tq1kWn0hN28X78OpZYDuIp2YBxwVxwl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b59b451ff9fad1b79ebf93fface35eda_JaffaCakes118

Files

b59b451ff9fad1b79ebf93fface35eda_JaffaCakes118
.dll windows:4 windows x86 arch:x86

8a910425565ef65f0655c11bae99550c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

comdlg32

ChooseFontA
FindTextA
PrintDlgA

mpr

WNetOpenEnumA
WNetEnumResourceA
WNetGetConnectionW

winspool.drv

OpenPrinterA
EnumPrintersA
ClosePrinter

imm32

ImmGetCompositionStringA
ImmSetCompositionFontA
ImmGetCompositionStringW

user32

CharUpperBuffA
CharLowerA
CheckMenuItem
ChildWindowFromPoint
CreateCaret
CreateWindowExA
CreateIcon
CharUpperBuffW
CreateMenu
EqualRect
DdeClientTransaction
DestroyCursor
DestroyIcon
EnumChildWindows
DdeConnect
EnableMenuItem
GetClassNameA
DeferWindowPos
DrawIcon
DrawTextW
DestroyMenu
FindWindowExA
FindWindowA
GetFocus
GetCursorPos
GetDlgItemTextA
FrameRect
GetAsyncKeyState
ExitWindowsEx
GetClassNameW
GetMessagePos
GetDlgCtrlID
GetDCEx
GetUserObjectSecurity
GetScrollInfo
GetKeyboardState
GetMessageTime
GetSysColor
EnableScrollBar
IsWindowVisible
GetMenuState
GetKeyboardType
InvalidateRect
GetMenuItemID
IntersectRect
LoadStringW
GetMenu
GetMenuItemInfoA
LoadStringA
GetScrollRange
InvalidateRgn
IsClipboardFormatAvailable
GetPropA
IsWindowEnabled
InsertMenuA
LoadIconW
RemovePropA
InsertMenuItemA
LoadCursorA
MessageBoxA
LoadBitmapA
IsZoomed
IsRectEmpty
LoadIconA
RegisterClassA
RedrawWindow
LoadImageA
GetWindowRect
RegisterHotKey
ToAscii
ScrollWindow
SendDlgItemMessageW
SetRect
SendDlgItemMessageA
SetCursorPos
SetDlgItemTextW
SetWindowsHookExA
LoadAcceleratorsA
ShowWindowAsync
MapWindowPoints
SendMessageTimeoutA
TranslateMessage
MsgWaitForMultipleObjects
SystemParametersInfoA
ScrollWindowEx
RemoveMenu
TranslateMDISysAccel
SetActiveWindow
SetCursor
ShowOwnedPopups
SetForegroundWindow
SetUserObjectSecurity
UnhookWindowsHookEx
SubtractRect
UnionRect
ValidateRect
UpdateWindow
ShowCursor
TrackPopupMenu
SetDlgItemTextA
SetMenuItemBitmaps

msvcrt

printf
memcmp
wcsncpy

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 16KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8a910425565ef65f0655c11bae99550c

Headers

File Characteristics

Imports

comdlg32

mpr

winspool.drv

imm32

user32

msvcrt

version

Sections

.text Size: 4KB - Virtual size: 3KB

.data Size: 32KB - Virtual size: 32KB

.bss Size: - Virtual size: 16KB

.idata Size: 3KB - Virtual size: 3KB

.text
Size: 4KB - Virtual size: 3KB

.data
Size: 32KB - Virtual size: 32KB

.bss
Size: - Virtual size: 16KB

.idata
Size: 3KB - Virtual size: 3KB