c1460d2ec6a299b8bc9a494ecb6674ed_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

c1460d2ec6a299b8bc9a494ecb6674ed_JaffaCakes118
Size

366KB
MD5

c1460d2ec6a299b8bc9a494ecb6674ed
SHA1

7da49da52310dde2064d87bd6705b8cc6f4ef95c
SHA256

3c93044dad8bae9b1d938a57b04f52b841cdae35ceeb3827082bc3c3fc389307
SHA512

31e5dd4e54bf12649cf058eee3332b665e37163554f227110373e89d984238cbbae934946221d780f2511accdfd4e34bf55b6f8d58ecca73c1573015aa4deb17
SSDEEP

6144:7S05Mc9Y1W+Hg/v3yK6rDhM2lZ7Pzrykh7ZiY8wowu1EI1KMh:7Wc5EgnTGD+2ldSeiNfK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c1460d2ec6a299b8bc9a494ecb6674ed_JaffaCakes118

Files

c1460d2ec6a299b8bc9a494ecb6674ed_JaffaCakes118
.dll windows:4 windows x86 arch:x86

26c9396428e5f5b519fced904433c5dd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

comctl32

DestroyPropertySheetPage
CreatePropertySheetPageA
ord8

kernel32

GetFullPathNameA
GetFullPathNameW
DeleteFileA
DeleteFileW
CreateDirectoryA
GetVersionExA
GetModuleFileNameA
GetLocaleInfoA
GetNumberFormatA
WideCharToMultiByte
ExpandEnvironmentStringsA
WaitForSingleObject
lstrcpynW
lstrcpynA
FindResourceA
LoadLibraryExA
CompareStringA
GetCurrentProcess
Sleep
SystemTimeToFileTime
MultiByteToWideChar
IsDBCSLeadByte
GetCPInfo
GetTempPathA
FlushFileBuffers
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetStringTypeW
GetStringTypeA
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetConsoleMode
GetConsoleCP
HeapSize
InitializeCriticalSectionAndSpinCount
GetVersion
GetStartupInfoA
SetHandleCount
LCMapStringW
LCMapStringA
IsValidCodePage
GetOEMCP
GetACP
ExitProcess
HeapDestroy
HeapCreate
VirtualAlloc
VirtualFree
DeleteCriticalSection
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
InterlockedDecrement
GetFileAttributesW
GetFileAttributesA
GetModuleHandleA
GetDriveTypeA
WriteFile
SetLastError
GetStdHandle
ReadFile
CreateFileW
CreateFileA
GetFileType
SetEndOfFile
SetFilePointer
GetProcessHeap
GetLastError
CloseHandle
FindFirstFileA
FindNextFileA
FindClose
LoadLibraryA
GetProcAddress
FreeLibrary
DosDateTimeToFileTime
LocalFileTimeToFileTime
FileTimeToLocalFileTime
FileTimeToDosDateTime
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleHandleW
GetCommandLineA
GetCurrentThreadId
LeaveCriticalSection
RtlUnwind
HeapAlloc
HeapFree
HeapReAlloc
RaiseException
GetSystemTimeAsFileTime
SetStdHandle
EnterCriticalSection

user32

OemToCharA
CharUpperW
CharLowerW
CharLowerA
LoadStringA
GetWindowRect
SetWindowPos
GetWindowTextA
GetSystemMetrics
GetWindow
GetClassNameA
CharToOemA
GetWindowLongA
SetWindowTextA
wsprintfW
GetSysColor
LoadImageA
SendDlgItemMessageA
CharUpperA
SetDlgItemTextA
wsprintfA
SetWindowLongA
GetDlgItemTextA
GetClientRect
BeginPaint
EndPaint
CreatePopupMenu
InsertMenuItemA
InsertMenuItemW
GetParent
InvalidateRect
GetDC
SendMessageA
ReleaseDC
ShowWindow
GetDlgItem

gdi32

GetObjectA
CreateCompatibleDC
GetPixel
SetPixel
DeleteDC
TextOutA
CreatePen
CreateSolidBrush
SetTextColor
Polygon
Polyline
DeleteObject
SelectObject
GetTextFaceA
GetTextMetricsA
CreateFontA
GetDeviceCaps

advapi32

RegQueryValueExA
RegOpenKeyExA
RegQueryValueExW
RegSetValueExA
RegCreateKeyExA
RegCloseKey

shell32

DragQueryFileA
ShellExecuteExA
SHGetPathFromIDListA
DragQueryFileW

ole32

ReleaseStgMedium

Exports

Exports

ConvertToExifTiffeX
CopyClickWBCoefs
CreateBlockReaderInterface
D3D10SetDirect3DDevice
D3D9GetDevice
D3D9ResourceGetMappedArray
EjectLoadCD
EnumDeviceRelease
EnumImageItemPropertyReset
GetDriveMode
GetMyColorDataProps
HostAlloc
Malloc
Memcpy2D

Sections

.text
Size: 81KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 135KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 145KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

26c9396428e5f5b519fced904433c5dd

Headers

File Characteristics

Imports

comctl32

kernel32

user32

gdi32

advapi32

shell32

ole32

Exports

Exports

Sections

.text Size: 81KB - Virtual size: 84KB

.rdata Size: 135KB - Virtual size: 136KB

.data Size: 145KB - Virtual size: 148KB

.rsrc Size: 1KB - Virtual size: 4KB

.reloc Size: 1KB - Virtual size: 4KB

.text
Size: 81KB - Virtual size: 84KB

.rdata
Size: 135KB - Virtual size: 136KB

.data
Size: 145KB - Virtual size: 148KB

.rsrc
Size: 1KB - Virtual size: 4KB

.reloc
Size: 1KB - Virtual size: 4KB