ff320569319a91efaf62fccd882d6fa7_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

ff320569319a91efaf62fccd882d6fa7_JaffaCakes118
Size

103KB
MD5

ff320569319a91efaf62fccd882d6fa7
SHA1

1d84e115313bc53599339d529960ee5016bbefb7
SHA256

e293f08683ee5101bb8e6ab171109013cc58014c8463bdfd2dbc8a04367fbda1
SHA512

4fefdc1c2c59693be0160d59f623aa94d27176d32af20cd7d206bf2f027396f87e3e3d1834c5d55e5d4f5be094e7fa1b4f5c5f869669de74d028ac8cb8106bf6
SSDEEP

3072:Lshi1K2YX6zSAKY0PhlC26YK5ChItxAP:jK/80Pi26XAhIH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ff320569319a91efaf62fccd882d6fa7_JaffaCakes118

Files

ff320569319a91efaf62fccd882d6fa7_JaffaCakes118
.dll windows:4 windows x86 arch:x86

18a916d074202c2f09c649548a9f6400

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LeaveCriticalSection
EnterCriticalSection
MultiByteToWideChar
GetTickCount
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetDiskFreeSpaceA
SetErrorMode
GetFileAttributesA
GetLocalTime
SystemTimeToFileTime
GetVersionExA
GetFileTime
SetFileTime
CompareStringA
FreeLibrary
GetProcAddress
lstrcatA
lstrcmpiA
LocalAlloc
LocalFree
CloseHandle
CompareFileTime
lstrcmpA
lstrcpyA
FindClose
FileTimeToLocalFileTime
FindFirstFileA
FindNextFileA
GetPrivateProfileStringA
CreateFileA
GetSystemDirectoryA
GetShortPathNameA
RemoveDirectoryA
DeviceIoControl
lstrlenW
CreateFileW
ReleaseMutex
WaitForSingleObject
CreateTimerQueueTimer
DeleteTimerQueueTimer
WideCharToMultiByte
InterlockedExchange
Sleep
InterlockedCompareExchange
FormatMessageA
WritePrivateProfileStringA
TlsSetValue
GetCurrentThreadId
InterlockedDecrement
InterlockedIncrement
HeapAlloc
HeapFree
GetProcessHeap
lstrlenA
GetLastError
GetModuleFileNameA
LoadLibraryA
GetLocaleInfoA
GetCommandLineA
VirtualProtect
VirtualFree
lstrcpynA
VirtualAlloc

user32

LoadIconA
SetDlgItemTextA
GetClientRect
CharUpperA
SetWindowLongA
SetWindowTextA
DestroyMenu
LoadMenuA
MessageBoxA
RemoveMenu
ReleaseDC
GetDC
GetSubMenu
EndDialog
SendMessageA
GetDlgItem
SetCursor
LoadCursorA
DestroyIcon
SendDlgItemMessageA
GetMenuItemInfoA
wsprintfA
IsWindow
LoadStringA
EnableWindow
GetSystemMetrics
SendMessageTimeoutA
GetWindowLongA
SetWindowPos
GetWindowRect
ClientToScreen
SetWindowRgn
OffsetRect
ShowWindow
GetActiveWindow
GetParent

advapi32

RegQueryValueExA
RegSetValueExA
RegSetValueExW
RegSetValueA
RegEnumKeyExA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegCreateKeyA
RegEnumValueA
RegDeleteValueA
RegCreateKeyExA
RegOpenKeyExA
RegCloseKey

gdi32

GetDeviceCaps

ole32

CoCreateInstance

msvcr71

_write
_lseeki64
_fileno
__pioinfo
__badioinfo
_unlock
memcpy
_iob
_except_handler3
_vsnprintf
memset
_errno
_wcsicmp
strncmp
_amsg_exit
free
_wcsnicmp
_vsnwprintf
_onexit
_initterm
malloc
_adjust_fdiv
__CppXcptFilter
__dllonexit
_isatty

Sections

.text
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sxdata
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

18a916d074202c2f09c649548a9f6400

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

ole32

msvcr71

Sections

.text Size: 57KB - Virtual size: 57KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 36KB - Virtual size: 70KB

.sxdata Size: 512B - Virtual size: 8B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 57KB - Virtual size: 57KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 36KB - Virtual size: 70KB

.sxdata
Size: 512B - Virtual size: 8B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 3KB - Virtual size: 2KB