d2ef8a89cc33ffb6bc716d8273a12e46_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d2ef8a89cc33ffb6bc716d8273a12e46_JaffaCakes118
Size

306KB
MD5

d2ef8a89cc33ffb6bc716d8273a12e46
SHA1

9593aac67bbf8acd49ded7746f98e90b03c95c1c
SHA256

ecf4dae0247d3e54f4b10f221e25d83b3cdace5b96ef2eb08ad2b8ff45e4a5d8
SHA512

e825adfe0520165cf2ad868710b1fd1d23ce78306a31c9a7e68f0831b72626202fdf8bf278ac15389d1da2cae0c9d4f7ff4ba35612aa91be2dc52e2e89e78f42
SSDEEP

6144:MQSJhlZhgfhiPYsbY/sCefYIY2Ta+SV2TKlbkPZ5WRcjo9ggms:FSJdhbPJ7QIYR+HWbkPZ5UmoS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d2ef8a89cc33ffb6bc716d8273a12e46_JaffaCakes118

Files

d2ef8a89cc33ffb6bc716d8273a12e46_JaffaCakes118
.dll windows:4 windows x86 arch:x86

14df58aea7a1c822db4ee159a0ab9774

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProcAddress
Beep
GetProfileIntW
lstrcpyW
GetCommandLineW
GlobalLock
GetProfileStringW
LocalAlloc
LocalFree
LocalReAlloc
lstrlenW
lstrcatW
CloseHandle
WaitForSingleObject
SetEvent
lstrcpynW
CreateThread
CreateEventW
GlobalUnlock
GlobalSize
GetStartupInfoA
WriteProfileStringW
Sleep
lstrcmpW
GlobalReAlloc
GlobalFree
GlobalAlloc
GlobalCompact
LoadLibraryA
GetModuleHandleA
WriteConsoleA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
RtlUnwind
GetProcessHeap
HeapFree
ResetEvent
HeapAlloc
SetUnhandledExceptionFilter

user32

DestroyMenu
GetDlgItem
CreateDialogParamW
GetWindowLongW
SetWindowLongW
LoadMenuW
EnableWindow
GetClientRect
MapWindowPoints
OffsetRect
SetWindowPos
CheckMenuRadioItem
CheckMenuItem
SetDlgItemTextW
SendMessageW
ShowWindow
UpdateWindow
InvalidateRect
LoadIconW
LoadCursorW
GetSysColorBrush
RegisterClassExW
CharNextW
SetCursor
SetFocus
SetWindowTextW
CheckRadioButton
GetSubMenu
MessageBeep
EndDialog
DialogBoxParamW
GetWindowRect
CloseClipboard
DestroyWindow
GetClipboardData
OpenClipboard
GetDesktopWindow
TrackPopupMenuEx
EnableMenuItem
IsClipboardFormatAvailable
DefWindowProcW
ChildWindowFromPoint
ScreenToClient
GetDlgCtrlID
PostQuitMessage
WinHelpW
DrawTextW
CallWindowProcW
HideCaret
CheckDlgButton
GetWindowTextW
SetDlgItemInt
GetMenu
SystemParametersInfoW
DispatchMessageW
TranslateMessage
TranslateAcceleratorW
GetProcessDefaultLayout
SetProcessDefaultLayout
LoadStringW
GetSysColor
MessageBoxW
CreateWindowExW
LoadAcceleratorsW
GetMessageW
IsDialogMessageW
IsChild
CharNextA
SetMenu

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueExA

shell32

ShellAboutW

gdi32

SetBkMode
SetBkColor
SetTextColor

Exports

Exports

kukgj

Sections

.code_01
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 262KB - Virtual size: 353KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

14df58aea7a1c822db4ee159a0ab9774

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

gdi32

Exports

Exports

Sections

.code_01 Size: 35KB - Virtual size: 35KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 262KB - Virtual size: 353KB

.rsrc Size: 1024B - Virtual size: 976B

.reloc Size: 2KB - Virtual size: 2KB

.code_01
Size: 35KB - Virtual size: 35KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 262KB - Virtual size: 353KB

.rsrc
Size: 1024B - Virtual size: 976B

.reloc
Size: 2KB - Virtual size: 2KB