055caef5f48edb1bc12c2062484088cb_JaffaCakes118

General

Target

055caef5f48edb1bc12c2062484088cb_JaffaCakes118
Size

194KB
MD5

055caef5f48edb1bc12c2062484088cb
SHA1

af8947b19c412f38b6d7e6dd616da1c35469fd8a
SHA256

d6869203247b5b3473754214ec3f5be7930fd30cc766f4022f3838f4821cc2cf
SHA512

3fdce1df803bdbb4a6949465c8d8898bd0a28d47a98cf4fe2e9ed6068da807b83977980f229609a9760eb4c5fbfc23eae5fe24b60297d180cffde29427070b41
SSDEEP

6144:SPZlkaLlseIw6eQ6kAJXlUA9YBPCDALpR8r9v:eZlkaLVFlQ6kAXlR2BPv09

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
055caef5f48edb1bc12c2062484088cb_JaffaCakes118

Files

055caef5f48edb1bc12c2062484088cb_JaffaCakes118
.dll windows:4 windows x86 arch:x86

df031414067388631893c33ca2ab9ee4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateConsoleScreenBuffer
DisableThreadLibraryCalls
ExitProcess
FileTimeToLocalFileTime
FreeLibrary
GetACP
GetCommandLineA
GetCurrentThreadId
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetNumberFormatA
GetOEMCP
GetPriorityClass
GetStartupInfoA
GetStdHandle
GetVersion
HeapAlloc
HeapCreate
HeapReAlloc
InitializeCriticalSection
LoadLibraryA
MultiByteToWideChar
ResumeThread
RtlUnwind
SetEndOfFile
SetFilePointer
SetHandleCount
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
TerminateProcess
TlsAlloc
lstrcpynA

user32

SetMenuItemInfoA
GetWindowPlacement
GetKeyState
EndDeferWindowPos
DialogBoxIndirectParamA

ole32

CoTaskMemFree
CoFileTimeNow
CLSIDFromString
CoCreateInstance
CreateAntiMoniker

advapi32

RevertToSelf
ObjectCloseAuditAlarmA

opengl32

glScissor
glTexCoord2sv
glTexGend
glIndexPointer
glColor3b

Exports

Exports

MemcpyToArrayAsync

Sections

.text
Size: 128KB - Virtual size: 212KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

df031414067388631893c33ca2ab9ee4

Headers

File Characteristics

Imports

kernel32

user32

ole32

advapi32

opengl32

Exports

Exports

Sections

.text Size: 128KB - Virtual size: 212KB

.data Size: 60KB - Virtual size: 64KB

.rsrc Size: 3KB - Virtual size: 4KB

.reloc Size: 1KB - Virtual size: 4KB

.text
Size: 128KB - Virtual size: 212KB

.data
Size: 60KB - Virtual size: 64KB

.rsrc
Size: 3KB - Virtual size: 4KB

.reloc
Size: 1KB - Virtual size: 4KB