bb0998a3c0b7aaf011cca867ae4f6165_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

bb0998a3c0b7aaf011cca867ae4f6165_JaffaCakes118
Size

136KB
MD5

bb0998a3c0b7aaf011cca867ae4f6165
SHA1

e224b332a168b94bc7148b4137ad71f81f3f9338
SHA256

ff9fed488f842bea203d8c6f9b3b931106fc4730cd2f2d1e4b1f12e68e995cff
SHA512

bdf023366a5fe2cd784f8d3a5ad21bae953aed76d04e19292a32ede55ffcb6a0968bf24e03eab50095150ef4cb801e4a52838c3a9a27e7312a5d5d27c5851067
SSDEEP

3072:IIgf+9bWr1UCtcxIlX6bxPrJf4wuiHJ5fEfMTzY:Ixfxr1UbxZTt4zip5BTz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bb0998a3c0b7aaf011cca867ae4f6165_JaffaCakes118

Files

bb0998a3c0b7aaf011cca867ae4f6165_JaffaCakes118
.dll windows:5 windows x86 arch:x86

4104babe19b267fcb16994306af543a7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DeleteAtom
_lclose
CompareStringW
GetProcAddress
LoadLibraryW
ExitThread
GetModuleHandleA
GetLastError
HeapAlloc
VirtualFree
lstrlenA
VirtualProtect
WriteConsoleW
GetStringTypeW
ConnectNamedPipe
FreeLibrary
VirtualAlloc
OutputDebugStringA
GetWindowsDirectoryA
FindFirstFileW
GetCurrentProcess

msvcrt

_cexit
iswalnum
free
isprint
strncpy
wcscat
memcpy
_adjust_fdiv
_snwprintf
_iob
__CxxFrameHandler
wcschr
_purecall
_exit
wcslen
__dllonexit
__winitenv
wcscpy
malloc
_c_exit
_ftol
__p__commode
__initenv
swprintf
_wcmdln
_vsnprintf
_wtol
_controlfp
wcscmp
swscanf
__p__fmode
_except_handler3

user32

RegisterClassA
ReleaseDC
GetMenuItemCount
GetCursorPos
SendMessageW
GetParent
DestroyWindow
BeginPaint
GetProcessWindowStation
LoadCursorA
LoadImageW
MapWindowPoints
CheckDlgButton
SetScrollPos
DispatchMessageW
wsprintfW
LoadCursorW
ClientToScreen
ReleaseCapture
SetCapture
LoadMenuW
DialogBoxParamA
CopyRect
ScreenToClient
SendMessageA
IsWindow
UnregisterClassW

gdi32

RestoreDC
Rectangle
SetBkMode
CreateFontIndirectW
PatBlt
StretchBlt
CreateBitmap
CreateCompatibleDC
SetTextColor
TranslateCharsetInfo

opengl32

glColor4d
glTexCoord2dv
glColor4f
glTexCoord2d
GlmfBeginGlsBlock
glFogfv
glColor3ui
glColor4i
wglShareLists
glStencilMask

Exports

Exports

MbmUbbkdurQicmn
TfbufkePmbyvqk
ZwPszbjiePisetg

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 124B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.crt
Size: 512B - Virtual size: 17B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 84B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4104babe19b267fcb16994306af543a7

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

opengl32

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 12KB

.rdata Size: 2KB - Virtual size: 2KB

.edata Size: 512B - Virtual size: 124B

.crt Size: 512B - Virtual size: 17B

.data Size: 55KB - Virtual size: 54KB

.rsrc Size: 63KB - Virtual size: 63KB

.reloc Size: 512B - Virtual size: 84B

.text
Size: 12KB - Virtual size: 12KB

.rdata
Size: 2KB - Virtual size: 2KB

.edata
Size: 512B - Virtual size: 124B

.crt
Size: 512B - Virtual size: 17B

.data
Size: 55KB - Virtual size: 54KB

.rsrc
Size: 63KB - Virtual size: 63KB

.reloc
Size: 512B - Virtual size: 84B