f5bcf6c6df346a55015137bb65ff190c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f5bcf6c6df346a55015137bb65ff190c_JaffaCakes118
Size

137KB
MD5

f5bcf6c6df346a55015137bb65ff190c
SHA1

a60b37b6d7e64e8b4d992a1c54f7874a657a1756
SHA256

3ba045125883d07213accc025e0e198d9c90c408fa48f83c265927e4bf0c679c
SHA512

b2a225bdb90f3395b02294a7152b2948f56f8b7a709dac1a2353c7362d169b14f2218083e1371ef992792220582d2d94a39c49ec4598fb2033a0663bcabce232
SSDEEP

3072:zyS6rwpBbh/O91NLnxbka44YmVfHyMhlXkOX3cDYPj1RbsyJH:WS6cJ2pLntka4FmtthlXLX3cDYPrbsy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f5bcf6c6df346a55015137bb65ff190c_JaffaCakes118

Files

f5bcf6c6df346a55015137bb65ff190c_JaffaCakes118
.dll windows:5 windows x86 arch:x86

629a71d885440f1962b44654b6a4fc49

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

_lclose
GetLastError
ExitThread
GetStringTypeW
HeapAlloc
CreateActCtxA
GetModuleHandleA
DeleteTimerQueueEx
FreeLibrary
WriteConsoleW
lstrlenA
LoadLibraryW
VirtualAlloc
GetProcAddress
OutputDebugStringA
VirtualFree
GetCurrentProcess
CopyLZFile
GetWindowsDirectoryA
FindFirstFileW
VirtualProtect

msvcrt

iswgraph
fprintf
__p__commode
wcscat
_iob
srand
_onexit
fclose
_initterm
fflush
swprintf
wcsncat
realloc
_purecall
strchr
_vsnprintf
__set_app_type
wcslen
free
memcpy
wcscmp
_cexit
wcscpy
swscanf
_wtol
_acmdln
wcsncpy

user32

CopyRect
LoadMenuW
BeginPaint
DispatchMessageW
RegisterClassA
ClientToScreen
MapWindowPoints
GetMenuItemCount
DestroyWindow
CheckDlgButton
DialogBoxParamA
GetCursorPos
ScreenToClient
SendMessageA
SetCapture
LoadImageW
SendMessageW
ReleaseCapture
wsprintfW
ReleaseDC
UnregisterClassW
LoadCursorW
IsWindow
SetScrollPos
GetProcessWindowStation
LoadCursorA
GetParent

gdi32

SetBkMode
CreateBitmap
PatBlt
CreateFontIndirectW
Rectangle
TranslateCharsetInfo
RestoreDC
CreateCompatibleDC
StretchBlt
SetTextColor

opengl32

glTexCoord2dv
glColor4i
glStencilMask
glFogfv
wglShareLists
glColor3ui
glTexCoord2d
GlmfBeginGlsBlock
glColor4f
glColor4d

Exports

Exports

MbmUbbkdurQicmn
TfbufkePmbyvqk
ZwPszbjiePisetg

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.crt
Size: 512B - Virtual size: 17B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 124B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 106B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

629a71d885440f1962b44654b6a4fc49

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

opengl32

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 12KB

.rdata Size: 2KB - Virtual size: 2KB

.crt Size: 512B - Virtual size: 17B

.edata Size: 512B - Virtual size: 124B

.data Size: 55KB - Virtual size: 55KB

.rsrc Size: 64KB - Virtual size: 63KB

.reloc Size: 512B - Virtual size: 106B

.text
Size: 12KB - Virtual size: 12KB

.rdata
Size: 2KB - Virtual size: 2KB

.crt
Size: 512B - Virtual size: 17B

.edata
Size: 512B - Virtual size: 124B

.data
Size: 55KB - Virtual size: 55KB

.rsrc
Size: 64KB - Virtual size: 63KB

.reloc
Size: 512B - Virtual size: 106B