fb6acff711ac4e510a2a0bc125ff4d65_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

fb6acff711ac4e510a2a0bc125ff4d65_JaffaCakes118
Size

354KB
MD5

fb6acff711ac4e510a2a0bc125ff4d65
SHA1

ad56e331ae1796ca1141df4fab4c1863c7759022
SHA256

f626024aa0d5dcb606e9427be8a28bd9fbad552db5da5c6568f37a3f05693586
SHA512

ee8f733c6ae00c52ccb9b683dcee2bac2e61025cb93c788f836495864b029443b3a638a2f226b107fa7419e36871e3060de9effc6d46cb8a2bea9660c5142c31
SSDEEP

6144:tj3CCcKhzh9RswZQ2wFoTslC7oZBGUMhCkiWe7vpxMhSlPaLaOkb203Z1O/axgdJ:JCCcI1Nvsn/sBcccmsAdDOnke

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fb6acff711ac4e510a2a0bc125ff4d65_JaffaCakes118

Files

fb6acff711ac4e510a2a0bc125ff4d65_JaffaCakes118
.dll windows:4 windows x86 arch:x86

677f17fe22f4e060a0049b9bc8e45f56

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

SetBkMode
SetGraphicsMode
SetTextColor
ModifyWorldTransform
SelectObject
GetStockObject
GetObjectA
SaveDC
RestoreDC
SetWindowOrgEx
GetDeviceCaps
DeleteObject
DeleteDC
DPtoLP
CreateSolidBrush
CreateFontIndirectA
CreateCompatibleDC
BitBlt
CreateCompatibleBitmap
SetViewportOrgEx

shell32

ShellExecuteA

ddraw

DirectDrawCreateEx
DDGetAttachedSurfaceLcl

oleaut32

SysFreeString
LoadRegTypeLi
LoadTypeLi
OleCreateFontIndirect
SysAllocString
SysAllocStringLen
SysStringByteLen
SysStringLen
VarUI4FromStr
VariantClear
VariantInit

comctl32

ord17

user32

RedrawWindow
PtInRect
MessageBoxA
MapDialogRect
LoadStringA
LoadCursorA
IsWindow
IsChild
InvalidateRgn
InvalidateRect
GetWindowTextLengthA
GetWindowTextA
GetWindowRect
GetWindowLongA
GetWindow
GetSysColor
GetParent
GetFocus
GetDlgItem
RegisterClassExA
GetDesktopWindow
GetDC
GetCursorPos
GetClientRect
GetClassNameA
GetClassInfoExA
GetActiveWindow
FillRect
EndPaint
EndDialog
EnableWindow
DialogBoxIndirectParamA
DestroyWindow
DestroyAcceleratorTable
DefWindowProcA
CreateWindowExA
CreateAcceleratorTableA
CharNextA
CallWindowProcA
BeginPaint
ReleaseCapture
ReleaseDC
SendMessageA
SetCapture
SetCursor
SetFocus
SetWindowContextHelpId
SetWindowLongA
SetWindowPos
SetWindowTextA
UnregisterClassA
GetDlgCtrlID
wsprintfA
RegisterWindowMessageA

advapi32

RegCloseKey
RegDeleteKeyA
RegSetValueExA
RegQueryValueExA
RegQueryInfoKeyA
RegOpenKeyExA
RegEnumKeyExA
RegDeleteValueA
RegCreateKeyExA

kernel32

QueryPerformanceCounter
MultiByteToWideChar
RaiseException
SetLastError
MulDiv
LockResource
LoadResource
LoadLibraryExA
LoadLibraryA
LeaveCriticalSection
SizeofResource
IsDBCSLeadByte
InterlockedIncrement
InterlockedExchange
InterlockedDecrement
InterlockedCompareExchange
InitializeCriticalSection
HeapFree
HeapAlloc
GlobalUnlock
GlobalLock
GlobalHandle
GlobalFree
GlobalAlloc
GetVersionExA
GetTickCount
GetThreadLocale
GetSystemTimeAsFileTime
GetProcessPriorityBoost
GetProcessHeap
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
GetLocaleInfoA
GetLastError
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
GetACP
FreeLibrary
FlushInstructionCache
FindResourceA
ExitProcess
EnterCriticalSection
DisableThreadLibraryCalls
DeleteCriticalSection
VirtualAlloc
VirtualFree
VirtualProtect
WideCharToMultiByte
lstrcmpA
lstrcmpiA
lstrcpynA
lstrlenA
lstrlenW
IsProcessorFeaturePresent

ole32

CLSIDFromProgID
CLSIDFromString
CoCreateInstance
CoGetClassObject
CoTaskMemAlloc
CoTaskMemFree
CoTaskMemRealloc
CreateStreamOnHGlobal
OleInitialize
OleLockRunning
OleUninitialize
StringFromGUID2

Exports

Exports

CreateNPatchMesh
CreateVolumeTextureFromFileA
FileInfo
GeneratePMesh
LoadSurfaceFromSurface
ReadFileExtensions
SHDot
SHRotateZ
SaveMeshHierarchyToFileW
SaveSurfaceToFileInMemory
StartDecompressBuffer
Vec4Transform
VecStopFeedLoad
mpegSplitSeekTime

Sections

.text
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 175KB - Virtual size: 175KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

677f17fe22f4e060a0049b9bc8e45f56

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

shell32

ddraw

oleaut32

comctl32

user32

advapi32

kernel32

ole32

Exports

Exports

Sections

.text Size: 53KB - Virtual size: 52KB

.rdata Size: 175KB - Virtual size: 175KB

.data Size: 30KB - Virtual size: 31KB

.rsrc Size: 92KB - Virtual size: 91KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 53KB - Virtual size: 52KB

.rdata
Size: 175KB - Virtual size: 175KB

.data
Size: 30KB - Virtual size: 31KB

.rsrc
Size: 92KB - Virtual size: 91KB

.reloc
Size: 2KB - Virtual size: 2KB