baed1e79a3b8c77ba5f4bd24e9788a8b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

baed1e79a3b8c77ba5f4bd24e9788a8b_JaffaCakes118
Size

68KB
MD5

baed1e79a3b8c77ba5f4bd24e9788a8b
SHA1

5b43ee56499946fb3becb67540bea7ee0cbb48f1
SHA256

beeac5f6644283b25be7842bcfe5e168becee3d72b75ff185a45655f319802a7
SHA512

7bb3e00b69dc63b4c4d46cf71f5283b9ee430f4344da6a249a5541f01c2a51120937e73eabd6e1bc871bb602bdf03f4e558ff05ccc055b2954837f3d49ff305b
SSDEEP

1536:Fpjfus9YPpMQzkNAeFSc1NSS4GtCmx/rF92gR+eNLG:FxfuzBzyAenftnx/rKy+e5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
baed1e79a3b8c77ba5f4bd24e9788a8b_JaffaCakes118

Files

baed1e79a3b8c77ba5f4bd24e9788a8b_JaffaCakes118
.dll windows:4 windows x86 arch:x86

156a1a1261b144fa45d7f9ce4f7d03ba

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetSystemPowerStatus
GlobalDeleteAtom
GetFileAttributesExW
FileTimeToLocalFileTime
GetLogicalDriveStringsW
GetShortPathNameA
DeleteTimerQueueTimer
GetConsoleMode
SetConsoleCursorPosition
LockFile
GlobalFree
CreateSemaphoreA
CreateProcessW
GetVolumeNameForVolumeMountPointW
GetModuleHandleExW
FindClose
HeapCompact
MoveFileA
SetTimeZoneInformation
IsBadWritePtr
UnlockFileEx
GetStringTypeW
FindResourceExA
OpenFileMappingA
WaitNamedPipeA
GetExitCodeProcess
FindAtomA
CreateJobObjectW
GetDiskFreeSpaceW
GetTimeFormatW
Sleep
EscapeCommFunction
DeviceIoControl
SetCurrentDirectoryA
WaitForMultipleObjects
CreateThread
VirtualProtect
LeaveCriticalSection
CreateMutexA
lstrlenW
lstrcatW
InterlockedExchange
HeapAlloc
lstrlenA
WaitForSingleObject
MapViewOfFile
GetProcAddress
InitializeCriticalSection
CloseHandle
GetLastError
CreateFileMappingA
GetSystemTimeAsFileTime
MoveFileExA
GetProcessHeap
CopyFileA
EnterCriticalSection
LoadLibraryA
SetDefaultCommConfigW

ole32

GetHGlobalFromStream
StgCreateDocfileOnILockBytes
OleDuplicateData
CoCreateGuid
CoGetObjectContext
CoSetProxyBlanket
CoInitialize
CoTaskMemFree

user32

GetWindowThreadProcessId
CharPrevA
CheckMenuRadioItem
GetActiveWindow
DialogBoxParamW
UnpackDDElParam
ValidateRect
DialogBoxIndirectParamA
SetWindowTextW
IsIconic
SetCaretPos
SetThreadDesktop
IsCharAlphaW
CharUpperBuffW
VkKeyScanW
GetMenuItemRect
IsCharAlphaA
DefMDIChildProcA
GetQueueStatus
LockWindowUpdate
PeekMessageA
GetCaretPos
CopyRect
SwitchToThisWindow
SystemParametersInfoW
GetKeyNameTextA
GetSubMenu
GetClassLongA
GetForegroundWindow
IsWindowVisible
GetMenuDefaultItem
GetGUIThreadInfo
UpdateLayeredWindow
GetAsyncKeyState
CopyImage
GetNextDlgTabItem
GetMenuItemInfoA
GetDlgItemTextA
InsertMenuItemW
SetPropW
OffsetRect
SetScrollPos
GetWindowLongW
SetProcessWindowStation
ToAsciiEx
CallNextHookEx
GetMessageA
DispatchMessageA
UnhookWindowsHookEx
SetTimer
SetWindowsHookExA
UpdateWindow

shlwapi

StrFormatKBSizeW
UrlEscapeW
PathStripPathW
PathRemoveExtensionW

advapi32

RegSetValueExA
RegDeleteValueA
RegQueryValueExA
RegCloseKey
EnumDependentServicesA
MakeSelfRelativeSD
GetNumberOfEventLogRecords
RegCreateKeyA
LockServiceDatabase
RegSaveKeyW
IsTextUnicode
MakeAbsoluteSD
RegCreateKeyW
GetEffectiveRightsFromAclW
RegSetValueA
RegRestoreKeyA
RegLoadKeyW
RegEnumValueA

gdi32

GetCharABCWidthsW
OffsetRgn
GetMapMode
EnumFontFamiliesW
GetMetaFileBitsEx
SetViewportExtEx
GetRgnBox
CreatePen
GetTextFaceW
GetClipRgn
GetTextExtentPointW
CopyMetaFileA
CreatePenIndirect
LPtoDP
SetWorldTransform
SetBrushOrgEx
FillRgn
RoundRect
TextOutA
SetPixelV
GetBkMode

Exports

Exports

DllInit
DllInstall

Sections

.text
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

156a1a1261b144fa45d7f9ce4f7d03ba

Headers

File Characteristics

Imports

kernel32

ole32

user32

shlwapi

advapi32

gdi32

Exports

Exports

Sections

.text Size: 48KB - Virtual size: 45KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 1024B

.reloc Size: 4KB - Virtual size: 1KB

.text
Size: 48KB - Virtual size: 45KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 1024B

.reloc
Size: 4KB - Virtual size: 1KB