f4f9c04482c254a3b5fa7cf4b8e284e9_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f4f9c04482c254a3b5fa7cf4b8e284e9_JaffaCakes118
Size

103KB
MD5

f4f9c04482c254a3b5fa7cf4b8e284e9
SHA1

b64446665360cc65935d39b700bd5da7fd994519
SHA256

5455d0a1b0ed4f2def49aea28e834063b3934934150434e5a02260eecb6cd687
SHA512

838c5adfa5c2381330f55d0ebf4a12f693afa2af83a64385d732198c086b0e00bd1c53d174a471567afc3903bd87c9a54bc13b5dc0412132b34f1ffd50be0e9d
SSDEEP

3072:Aov/WuTnK2Gg6zN6KY0El526KK5ChItxAd:f3DK/i0M26xAhIH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f4f9c04482c254a3b5fa7cf4b8e284e9_JaffaCakes118

Files

f4f9c04482c254a3b5fa7cf4b8e284e9_JaffaCakes118
.dll windows:4 windows x86 arch:x86

18a916d074202c2f09c649548a9f6400

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LeaveCriticalSection
EnterCriticalSection
MultiByteToWideChar
GetTickCount
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetDiskFreeSpaceA
SetErrorMode
GetFileAttributesA
GetLocalTime
SystemTimeToFileTime
GetVersionExA
GetFileTime
SetFileTime
CompareStringA
FreeLibrary
GetProcAddress
lstrcatA
lstrcmpiA
LocalAlloc
LocalFree
CloseHandle
CompareFileTime
lstrcmpA
lstrcpyA
FindClose
FileTimeToLocalFileTime
FindFirstFileA
FindNextFileA
GetPrivateProfileStringA
CreateFileA
GetSystemDirectoryA
GetShortPathNameA
RemoveDirectoryA
DeviceIoControl
lstrlenW
CreateFileW
ReleaseMutex
WaitForSingleObject
CreateTimerQueueTimer
DeleteTimerQueueTimer
WideCharToMultiByte
InterlockedExchange
Sleep
InterlockedCompareExchange
FormatMessageA
WritePrivateProfileStringA
TlsSetValue
GetCurrentThreadId
InterlockedDecrement
InterlockedIncrement
HeapAlloc
HeapFree
GetProcessHeap
lstrlenA
GetLastError
GetModuleFileNameA
LoadLibraryA
GetLocaleInfoA
GetCommandLineA
VirtualProtect
VirtualFree
lstrcpynA
VirtualAlloc

user32

LoadIconA
SetDlgItemTextA
GetClientRect
CharUpperA
SetWindowLongA
SetWindowTextA
DestroyMenu
LoadMenuA
MessageBoxA
RemoveMenu
ReleaseDC
GetDC
GetSubMenu
EndDialog
SendMessageA
GetDlgItem
SetCursor
LoadCursorA
DestroyIcon
SendDlgItemMessageA
GetMenuItemInfoA
wsprintfA
IsWindow
LoadStringA
EnableWindow
GetSystemMetrics
SendMessageTimeoutA
GetWindowLongA
SetWindowPos
GetWindowRect
ClientToScreen
SetWindowRgn
OffsetRect
ShowWindow
GetActiveWindow
GetParent

advapi32

RegQueryValueExA
RegSetValueExA
RegSetValueExW
RegSetValueA
RegEnumKeyExA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegCreateKeyA
RegEnumValueA
RegDeleteValueA
RegCreateKeyExA
RegOpenKeyExA
RegCloseKey

gdi32

GetDeviceCaps

ole32

CoCreateInstance

msvcr71

_write
_lseeki64
_fileno
__pioinfo
__badioinfo
_unlock
memcpy
_iob
_except_handler3
_vsnprintf
memset
_errno
_wcsicmp
strncmp
_amsg_exit
free
_wcsnicmp
_vsnwprintf
_onexit
_initterm
malloc
_adjust_fdiv
__CppXcptFilter
__dllonexit
_isatty

Sections

.text
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sxdata
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

18a916d074202c2f09c649548a9f6400

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

ole32

msvcr71

Sections

.text Size: 57KB - Virtual size: 57KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 36KB - Virtual size: 70KB

.sxdata Size: 512B - Virtual size: 8B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 57KB - Virtual size: 57KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 36KB - Virtual size: 70KB

.sxdata
Size: 512B - Virtual size: 8B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 3KB - Virtual size: 2KB