dac9ebf0aba778c5b8db44b7dd29a314_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

dac9ebf0aba778c5b8db44b7dd29a314_JaffaCakes118
Size

67KB
MD5

dac9ebf0aba778c5b8db44b7dd29a314
SHA1

f2235003be030a6c3ee5c704c4f24122d814ac6f
SHA256

b19a8695fda9d0d79f2513c55f3776798dad9a8206271ce0d76ca364da58c5c0
SHA512

8f34cc71a64c7bcb23fc8a0eafa767b6b3e90fc634ad3b3a0ef3ed578ca119017ab016d787b1f33b5a464b66ded58bde12da84098b640e8ec00d90601bd65f1d
SSDEEP

1536:lU44wUtQ02JwA6jcV4lI52L+ATR30BDZa2q3b3x:ldrUtQorI52rufS39

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dac9ebf0aba778c5b8db44b7dd29a314_JaffaCakes118

Files

dac9ebf0aba778c5b8db44b7dd29a314_JaffaCakes118
.dll windows:4 windows x86 arch:x86

e422c76889779ce68a20f1ab56a9d9fb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

ChangeMenuA
SetFocus
ShowCursor
ShowWindow
DrawTextA
MessageBeep
LoadIconA
GetMenu
CharUpperA
CharToOemBuffA
MessageBoxA

kernel32

GetCommandLineA
ExitProcess
CloseHandle
GetStartupInfoA
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
UnmapViewOfFile
GetModuleHandleA

wininet

InternetCanonicalizeUrlA
InternetSetOptionExA
InternetSetStatusCallbackA
HttpEndRequestA

advapi32

LsaGetUserName
RegEnumKeyA
LsaGetSystemAccessAccount
LsaGetRemoteUserName
LsaFreeMemory
LsaEnumerateTrustedDomainsEx
LsaEnumeratePrivileges
LsaEnumerateAccountsWithUserRight
LsaEnumerateAccountRights
LsaClose
LsaCreateAccount
LsaCreateTrustedDomainEx
LsaDeleteTrustedDomain

ole32

OleUninitialize
OleInitialize
DoDragDrop
CreateILockBytesOnHGlobal
CoUninitialize
CoCreateInstance
CoGetClassObject
CoGetMalloc
CoInitialize
CoTaskMemAlloc
CoTaskMemFree
CreateBindCtx

msvbvm60

__vbaFileClose
__vbaDateStr

dsound

DirectSoundCreate
DirectSoundCaptureEnumerateW
DirectSoundEnumerateA

msvfw32

ICImageDecompress
ord2
DrawDibRealize

Sections

.text
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e422c76889779ce68a20f1ab56a9d9fb

Headers

File Characteristics

Imports

user32

kernel32

wininet

advapi32

ole32

msvbvm60

dsound

msvfw32

Sections

.text Size: 27KB - Virtual size: 28KB

.rdata Size: 15KB - Virtual size: 16KB

.data Size: 14KB - Virtual size: 16KB

.idata Size: 2KB - Virtual size: 4KB

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 27KB - Virtual size: 28KB

.rdata
Size: 15KB - Virtual size: 16KB

.data
Size: 14KB - Virtual size: 16KB

.idata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 8KB - Virtual size: 8KB