da808fe849f5ca8a0d09538bc8812e79_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

da808fe849f5ca8a0d09538bc8812e79_JaffaCakes118
Size

260KB
MD5

da808fe849f5ca8a0d09538bc8812e79
SHA1

1ab3612c6cb1c421c941f59416e8ba61d1e992d0
SHA256

c5181ee384a70232d147ca338e68af82378b839e9b930cae369a63a0d4ad7681
SHA512

67ec1800270eab11e65207a49a910043d6c1e21295df1ea09e4baf551fed1edead101c4666119a912c71e987073b8220e87dfabbe8cc5b5a0867fac0635a60d0
SSDEEP

6144:0MYWUoFIa0GkHuMJrSIDMKvsvn0J6wQ/BpCd1+NTPKY7tl:oWxaXvHSIIlv0JlkKd1+1PKYhl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
da808fe849f5ca8a0d09538bc8812e79_JaffaCakes118

Files

da808fe849f5ca8a0d09538bc8812e79_JaffaCakes118
.dll windows:1 windows x86 arch:x86

7749a3396b40e2a20cc5110b23055b1a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

BuildCommDCBA
ConvertThreadToFiber
DebugBreak
DisconnectNamedPipe
DosDateTimeToFileTime
EnumResourceLanguagesW
ExitProcess
FindFirstChangeNotificationA
GetCommMask
GetCommState
GetConsoleAliasesW
GetConsoleMode
GetCurrencyFormatW
GetEnvironmentVariableA
GetFileSize
GetLocaleInfoW
GetLogicalDrives
GetModuleFileNameA
GetPrivateProfileStringA
GetProfileIntA
GetSystemTimeAsFileTime
GlobalMemoryStatus
HeapReAlloc
InterlockedDecrement
IsBadWritePtr
MapViewOfFileEx
MulDiv
OpenMutexW
PeekNamedPipe
PrepareTape
ScrollConsoleScreenBufferA
SetConsoleInputExeNameW
SetConsoleWindowInfo
SetDefaultCommConfigA
SetEvent
SetFileAttributesW
SetHandleInformation
SetSystemTimeAdjustment
Sleep
VirtualProtect
WaitCommEvent
WritePrivateProfileStructA
lstrcmpA
lstrcmpiA

user32

CallNextHookEx
CallWindowProcW
CharToOemA
ChildWindowFromPoint
CopyAcceleratorTableA
CreateIconFromResourceEx
DdeReconnect
DeferWindowPos
DrawEdge
EnumDesktopsW
EnumDisplaySettingsExW
EnumPropsW
GetClassWord
GetCursor
GetDesktopWindow
GetDialogBaseUnits
GetMenuContextHelpId
GetMenuState
GetParent
GetWindowContextHelpId
GrayStringA
LoadMenuIndirectA
OpenIcon
SetWindowTextA
ToAsciiEx
ToUnicodeEx
UnionRect
UserHandleGrantAccess
WINNLSEnableIME

gdi32

CreateScalableFontResourceA
DeviceCapabilitiesExA
DeviceCapabilitiesExW
EnumEnhMetaFile
ExcludeClipRect
FrameRgn
GdiComment
GetClipBox
GetClipRgn
GetKerningPairsW
GetPaletteEntries
GetPath
GetPixel
GetPixelFormat
GetRasterizerCaps
GetTextFaceA
GetTextFaceW
PlayEnhMetaFileRecord
SelectObject
UnrealizeObject

msvcrt

_ecvt
_expand
_getcwd
_hypot
_spawnl
_unloaddll
_unlock
_wchmod
_wmakepath
fgets
mblen
putc
strftime
strxfrm
tan
tanh
tmpnam
vsprintf
wcsftime
wcsrchr

Exports

Exports

ALbxogFWsuYEpgyj
BKfTzp
FojDOkqzeqxCtzmsjq
HxgaxfTkeE
KdZSzyuy
OymyvsydOufOk
PdtPuZnd
PuiyhDisJvOSfqLhpu
VHYfgcmsimdu
VenHSomvisr
VgzyeactZhIcBYlCG
WKQeiIaXtSrzJh

Sections

.text
Size: 8KB - Virtual size: 664KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 246KB - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mdata
Size: 512B - Virtual size: 340B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 800B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7749a3396b40e2a20cc5110b23055b1a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

msvcrt

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 664KB

.data Size: 246KB - Virtual size: 260KB

.mdata Size: 512B - Virtual size: 340B

.rdata Size: 1024B - Virtual size: 12KB

.rsrc Size: 1024B - Virtual size: 800B

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 664KB

.data
Size: 246KB - Virtual size: 260KB

.mdata
Size: 512B - Virtual size: 340B

.rdata
Size: 1024B - Virtual size: 12KB

.rsrc
Size: 1024B - Virtual size: 800B

.reloc
Size: 2KB - Virtual size: 1KB