d2d42ea298172ceb9260843c2bbc2be6_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d2d42ea298172ceb9260843c2bbc2be6_JaffaCakes118
Size

83KB
MD5

d2d42ea298172ceb9260843c2bbc2be6
SHA1

7ccda38e2e85fbaef1b85eb33890490624bb59d5
SHA256

4ca7ad5988cd4d57e45b71525dc4682e7362fd6146e994cf20a15a1d4f9f54ae
SHA512

56ff306613c91a0208f20489622960ed7e2d5ecfcc17fcfb21513fc314990b107535377e6bc37b0cc54425a3a538b242caa6074354ad863c202e71e02f80aa58
SSDEEP

1536:hpn+q7yBeQ4qCGKPsNIiI8Qzz3yfPQXsSxOnjonmmYCXn7UOpaIidgVVkncji3c:hpn57yI1fi5QXUPQXsSxOnjoqC375SsD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d2d42ea298172ceb9260843c2bbc2be6_JaffaCakes118

Files

d2d42ea298172ceb9260843c2bbc2be6_JaffaCakes118
.dll windows:4 windows x86 arch:x86

1f8629de8aed0d9132cd5678ca0e4764

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpyA
lstrcpynW
lstrlenW
lstrcatW
VirtualProtect
InterlockedExchange
Sleep
InterlockedCompareExchange
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
lstrcpyW
CloseHandle
CreateFileW
TerminateProcess
lstrlenA
GetVersionExA
FindFirstFileA
LocalAlloc
LocalFree
FindClose
IsDBCSLeadByte
GetTickCount
GlobalLock
GlobalUnlock
GlobalAlloc
GlobalFree

user32

GetUpdateRect
GetSysColor
wsprintfA
InvalidateRect
UpdateWindow
GetClientRect
MoveWindow
GetWindowLongA
SetWindowLongA
DefWindowProcA
EnableWindow
SetDlgItemInt
GetWindowRect
LoadImageA
LoadCursorA
CreateWindowExA
GetSystemMetrics
SendMessageA
GetDC
LoadStringA
ReleaseDC
DestroyWindow
UnregisterClassA
UnionRect
GetCursor
SetCursor
ClientToScreen
GetParent
DrawTextExA
GetWindowTextA
GetCursorPos
DestroyIcon
IsWindowVisible
SetScrollPos
SetScrollInfo
HideCaret
ShowCaret
GetWindowTextLengthA
IsRectEmpty
TranslateAcceleratorA
GetCaretPos
WaitMessage
SetWindowTextA
CheckMenuItem
GetMenuItemCount
BringWindowToTop
TrackPopupMenu
GetKeyState
GetActiveWindow
SetWindowPos
GetFocus
EndDialog
TabbedTextOutA
DialogBoxParamA
GetDlgItem
ChildWindowFromPointEx
GetDlgCtrlID
SetForegroundWindow
MessageBoxA
CreateIconIndirect
LoadBitmapA
ScreenToClient
PtInRect
GetTabbedTextExtentA
GetScrollInfo
ShowWindow
PostMessageA
IntersectRect
OffsetRect
SetCapture
UnhookWindowsHookEx
ReleaseCapture
PeekMessageA
CreateDialogParamA
EndPaint
InflateRect
BeginPaint
SetClipboardData
SetRectEmpty
GetMenu
GetSubMenu
GetCapture
KillTimer
GetAsyncKeyState
SetRect
SetTimer
SetFocus
MapWindowPoints
ClipCursor
GetSysColorBrush

advapi32

RegCloseKey

gdi32

RestoreDC
SetTextColor
BitBlt
CreateCompatibleBitmap
RealizePalette
SelectPalette
CreateSolidBrush
SetWindowExtEx
SetViewportExtEx
SetViewportOrgEx
SaveDC
IntersectClipRect
ExtTextOutA
GetCharABCWidthsA
Rectangle
SetBkMode
CreatePen
SetTextAlign
ScaleViewportExtEx
SetMapMode
SetWindowOrgEx
CreateCompatibleDC
DeleteDC
GetObjectA
GetStockObject
SelectObject
DeleteObject
CreateFontIndirectA
SetBkColor

msvcrt

_initterm
_onexit
__dllonexit
memcpy
wcstol
wcsncpy
_XcptFilter
free
_adjust_fdiv
_except_handler3
srand
rand
time
malloc

msvcp60

??0Init@ios_base@std@@QAE@XZ
??1Init@ios_base@std@@QAE@XZ
??0_Winit@std@@QAE@XZ
??1_Winit@std@@QAE@XZ
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBD@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAH@Z
?cin@std@@3V?$basic_istream@DU?$char_traits@D@std@@@1@A
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
?endl@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@1@AAV21@@Z

Sections

.text
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1f8629de8aed0d9132cd5678ca0e4764

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

msvcrt

msvcp60

Sections

.text Size: 38KB - Virtual size: 38KB

.rdata Size: 39KB - Virtual size: 38KB

.data Size: 1024B - Virtual size: 34KB

.rsrc Size: 1024B - Virtual size: 1024B

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 38KB - Virtual size: 38KB

.rdata
Size: 39KB - Virtual size: 38KB

.data
Size: 1024B - Virtual size: 34KB

.rsrc
Size: 1024B - Virtual size: 1024B

.reloc
Size: 2KB - Virtual size: 2KB