c94eb205607fad82d017d032ddee552f_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

c94eb205607fad82d017d032ddee552f_JaffaCakes118
Size

62KB
MD5

c94eb205607fad82d017d032ddee552f
SHA1

8675d02042541b50c11e2567ebeac6a686fb6155
SHA256

5fa2cd54fcbb4a5da7cc0c2acac8453c91097cc8ca79da25794f68627a759ab3
SHA512

e11400f4e5a1878fe6ea49725502f1ab05cf4903842a3fbb2bf96ec079cc0292aeca3abb92b2aacb5c5bd0cd6d19d4a81afc3a39477faa2102516ed672118066
SSDEEP

1536:FHFgllBiGzHglLOfgY4gD4/XtM5gdm3NHDiTbQZEMME:Al/i+gJOJYXtMWdm3NHD4bQZi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c94eb205607fad82d017d032ddee552f_JaffaCakes118

Files

c94eb205607fad82d017d032ddee552f_JaffaCakes118
.dll windows:5 windows x86 arch:x86

0f355893165cbf072d718265d7e2892c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

SetBkMode
SelectObject
GetDeviceCaps
SetTextColor

asycufat

_FDscale
_Dtest
_Mbrtowc
_LSnan
_Stof
_LDscale
_LNan
_LEps
_Poly
_Tolower
_FSinh
_Wcrtomb
_LPoly
_LRteps
_FDnorm
_Dnorm
_FDenorm
_Strxfrm
_Inf
_FNan
_FXbig
_FDtest
_FCosh
_FSnan
_FExp
_LSinh
_LInf
_LDenorm
_Exp
_LExp
_LCosh
_FRteps
_Getcoll
_Nan
_Dscale

shell32

DragQueryFileA
DragAcceptFiles
ShellExecuteA

kernel32

GetProcAddress
GetCurrentDirectoryA
lstrcpyA
CreateFileMappingA
GetPrivateProfileStructA
lstrlenW
Sleep
GetModuleFileNameA
GetPrivateProfileStringA
ReadProcessMemory
OpenProcess
CloseHandle
TerminateProcess
MapViewOfFile
GlobalLock
lstrcpynA
SetFilePointer
GetCurrentProcessId
CreatePipe
CopyFileA
GlobalUnlock
lstrcmpA
WideCharToMultiByte
WriteFile
UnmapViewOfFile
VirtualFree
GetModuleHandleA
LoadLibraryA
GetCommandLineA
VirtualQuery
WaitForMultipleObjects
GetCurrentProcess
ResumeThread
CreateFileA
SetPriorityClass
WritePrivateProfileStringA
IsProcessorFeaturePresent
GetPriorityClass
GlobalAlloc
ReadFile
GetCurrentThread
VirtualAlloc
lstrcatA

msvcrt

malloc
_except_handler3
asctime
sprintf
strncmp
free

user32

wsprintfA
SetFocus
SetForegroundWindow
MessageBeep
EnumClipboardFormats
SetWindowTextA
GetParent
DestroyIcon
SetClipboardData
DestroyMenu
TrackPopupMenu
GetActiveWindow
SendMessageA
IsIconic
CheckRadioButton
GetCursorPos
KillTimer
ScreenToClient
wvsprintfA
CharLowerA
EnableWindow
CheckMenuRadioItem
CheckDlgButton
SetMenuItemInfoA
GetWindowRect
EndDialog
LoadBitmapA
SetDlgItemTextA
SetWindowLongA
CharUpperA
LoadIconA
InvalidateRect

comctl32

ImageList_Add
ImageList_Create
ImageList_Remove
InitCommonControlsEx

advapi32

RegSetValueExA
RegDeleteKeyA
RegCreateKeyExA

imagehlp

ImageRvaToVa
ImageNtHeader
CheckSumMappedFile

comdlg32

GetOpenFileNameA

Exports

Exports

CreateProcessNotify
mpnonlpa

Sections

.text
Size: 48KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0f355893165cbf072d718265d7e2892c

Headers

File Characteristics

Imports

gdi32

asycufat

shell32

kernel32

msvcrt

user32

comctl32

advapi32

imagehlp

comdlg32

Exports

Exports

Sections

.text Size: 48KB - Virtual size: 52KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 2KB - Virtual size: 4KB

.rsrc Size: 1KB - Virtual size: 4KB

.reloc Size: 512B - Virtual size: 4KB

.text
Size: 48KB - Virtual size: 52KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 1KB - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 4KB