ffc25ba53a396a252b645376ac619128_JaffaCakes118

General

Target

ffc25ba53a396a252b645376ac619128_JaffaCakes118
Size

16KB
MD5

ffc25ba53a396a252b645376ac619128
SHA1

1d17a73e7665e824c78e94c38c5ae7b2db4f8c8a
SHA256

16f9f80ebcf1c431f47e2bee953aac1b320ce86caa2d176c5605a842a11ef2bf
SHA512

0118d6ab513e57f204780f1d0990cac5fb8fa80dd5116be316e0a6c49bd0fd02e61fff7bd9c79da1f0a717ec9c9d47fb571cf604a0ffbbc6706731bea0a06250
SSDEEP

384:bEVJL5BL6mwBgWclfYwo6rS0CHdKiVbKyvFjb5ht5uc5PQPDIkttHRi:ULHzwBgWclfY6eTKibdbXt5ucZ+D5ZRi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ffc25ba53a396a252b645376ac619128_JaffaCakes118

Files

ffc25ba53a396a252b645376ac619128_JaffaCakes118
.dll windows:4 windows x86 arch:x86

edda69afd99361910ff3aa673a08e9a9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

MultiByteToWideChar
GetTickCount
CloseHandle
WriteFile
ReadFile
CreateFileA
lstrcatA
lstrcmpA
SetFilePointer
CreateEventA
GetProcAddress
GetTempPathA
GetFileAttributesA
HeapReAlloc
HeapFree
FindClose
GetThreadLocale
GetLastError
GetFileAttributesW
GetSystemDefaultLCID
GlobalFree
GetProcessHeap
HeapAlloc
GlobalAlloc
lstrcpynA
lstrcpyA
GetModuleHandleA
GetUserDefaultLCID
lstrlenA

user32

ShowWindow
wsprintfA
CallWindowProcA
DestroyWindow
EnableWindow
CreateWindowExW
RegisterWindowMessageA
SetWindowLongA
SetDlgItemTextA
MessageBoxA
wsprintfW
SetWindowTextA
SendMessageA
GetDlgItem
GetFocus
IsWindowVisible
GetClientRect
GetWindowRect
CreateWindowExA
GetWindowLongA
ReleaseDC
BeginPaint

advapi32

RegOpenKeyExA
RegSetValueExA
RegOpenKeyA
RegQueryValueExA
RegCloseKey

wininet

InternetConnectA
InternetOpenA
InternetSetFilePointer
InternetCloseHandle
HttpOpenRequestA

Exports

Exports

e
l
r

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

edda69afd99361910ff3aa673a08e9a9

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

wininet

Exports

Exports

Sections

.text Size: 9KB - Virtual size: 9KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 512B - Virtual size: 1KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 9KB - Virtual size: 9KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 1KB

.reloc
Size: 1KB - Virtual size: 1KB