04266289150f9bb5c1f0de5369ce9f94_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

04266289150f9bb5c1f0de5369ce9f94_JaffaCakes118
Size

345KB
MD5

04266289150f9bb5c1f0de5369ce9f94
SHA1

77df9aca8642e9466b4b7af8bc32b8034931d322
SHA256

82c5b482331acfb1868ab9d933ab805db8f3314e36f1f607df9c6846265f01d2
SHA512

68ea07483ba7a29a3fc9441f75f0bd873ed7bb5b643e81d72736cce07ec2e5fb647e0894a364b4e91a7642b6f3c6a7c69c565cd27e52b40238a4dd9de2a1bd4b
SSDEEP

6144:rzTM8XPmJxPLfwpnBl7BJRM9XBP0XeNkDV:r5EjUb7BJRs8r

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
04266289150f9bb5c1f0de5369ce9f94_JaffaCakes118

Files

04266289150f9bb5c1f0de5369ce9f94_JaffaCakes118
.dll windows:4 windows x86 arch:x86

2ba85541f364fa0550bf659c1545c0e2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Imports

comctl32

ImageList_DragShowNolock
ImageList_Replace
ImageList_GetIcon
ImageList_AddIcon
ImageList_Remove
ImageList_DragLeave
ImageList_AddMasked
ImageList_GetDragImage
ImageList_DrawIndirect
ImageList_Draw
ImageList_Create
ImageList_EndDrag
ImageList_Remove
ImageList_GetImageInfo
ImageList_DrawEx
ImageList_GetIconSize
ImageList_ReplaceIcon
ImageList_Merge
ImageList_LoadImage
ImageList_GetIcon
ImageList_DragEnter
ImageList_Write
ImageList_DragLeave
ImageList_GetIconSize
ImageList_Read
ImageList_AddMasked
ImageList_Destroy
ImageList_GetImageCount
InitCommonControls
ImageList_AddIcon
ImageList_LoadImageW
ImageList_DrawEx
ImageList_Remove
ImageList_ReplaceIcon
ImageList_BeginDrag
ImageList_Draw
ImageList_Write
ImageList_Write
ImageList_ReplaceIcon
ImageList_GetImageInfo
ImageList_DrawIndirect
ImageList_EndDrag
ImageList_AddIcon
ImageList_DragShowNolock
ImageList_Remove
ImageList_LoadImage
ImageList_DrawEx
ImageList_DragEnter
ImageList_Create
ImageList_GetImageCount

advapi32

RegCreateKeyExA
RegOpenKeyExA
RegEnumKeyA
RegQueryValueW
RegQueryInfoKeyA
RegFlushKey
RegQueryValueExW
RegEnumValueW
RegCreateKeyExW
RegQueryValueExA
RegGetKeySecurity
RegDeleteKeyA
RegDeleteKeyW
RegQueryInfoKeyW
RegDeleteValueA
RegLoadKeyW
RegLoadKeyA
RegOpenKeyA
RegOpenKeyW

user32

CopyImage
DrawTextW
CloseWindow
IsMenu
GetWindowTextLengthA
DrawIconEx
GetWindowTextA
DialogBoxParamA
InsertMenuA
IsWindow
CalcMenuBar
GetDlgItem
LoadMenuA
DrawTextA
GetFocus
AppendMenuA
IsMenu
DrawIcon
CopyIcon
LoadCursorA
GetWindow
CopyRect
DrawTextW
CopyImage
GetWindowTextA
GetWindowTextLengthA
GetCursor
DialogBoxParamW
AppendMenuW
BlockInput
AlignRects
GetWindowTextA
CopyIcon
DrawIcon
AppendMenuW
GetFocus
CopyImage
DialogBoxParamA
IsMenu
GetMenu
IsWindow
GetDlgItem
GetCursor
GetWindow
InsertMenuA
BlockInput
GetWindowTextLengthA
LoadCursorA
DialogBoxParamW

kernel32

WriteFile
GetFileTime
ReadConsoleA
GetFileSize
GetConsoleMode
GetStdHandle
CopyFileA
CopyFileExA
CopyFileW
GetCPInfo
CreateDirectoryA
ExitThread

Sections

.tls
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 50B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 479B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.INIT
Size: 324KB - Virtual size: 324KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.b5942
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 122B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 215KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2ba85541f364fa0550bf659c1545c0e2

Headers

File Characteristics

Imports

comctl32

advapi32

user32

kernel32

Sections

.tls Size: 12KB - Virtual size: 12KB

.data Size: - Virtual size: 50B

.rdata Size: - Virtual size: 479B

.INIT Size: 324KB - Virtual size: 324KB

.b5942 Size: 4KB - Virtual size: 4KB

.edata Size: 512B - Virtual size: 122B

.rsrc Size: 2KB - Virtual size: 215KB

.tls
Size: 12KB - Virtual size: 12KB

.data
Size: - Virtual size: 50B

.rdata
Size: - Virtual size: 479B

.INIT
Size: 324KB - Virtual size: 324KB

.b5942
Size: 4KB - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 122B

.rsrc
Size: 2KB - Virtual size: 215KB