05a67da7535ae32a5e8d148f654e1355_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

05a67da7535ae32a5e8d148f654e1355_JaffaCakes118
Size

525KB
MD5

05a67da7535ae32a5e8d148f654e1355
SHA1

e5444bd8a1065a6e434fd0be15ca1f6ca3c8fa39
SHA256

b62650ccf01cca4b5bd2d626415d506cb269e1a858db5daffd62bafaa420fe21
SHA512

2039697f57e61e8e2f48b1a4253099a502ccbdb804fa98c64582e65d35d8cd87a658e52c27cbd55fda0a064ff655f93bbfd753deaa0831939622b0bc61bd1b60
SSDEEP

12288:WI/ECxOf6vZyk6savjiuFBhqX5Z6cVurbAmSoqcx73yz3j:WI/ECGywkpavjXxoM0unAGh73+j

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
05a67da7535ae32a5e8d148f654e1355_JaffaCakes118

Files

05a67da7535ae32a5e8d148f654e1355_JaffaCakes118
.dll windows:5 windows x86 arch:x86

ca1c7853b29bed02bab5cfa77f707413

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpy
DeleteCriticalSection
TlsSetValue
lstrlenW
Sleep

user32

GetKeyboardType
WindowFromPoint

advapi32

RegQueryValueExA
RegSetValueExA

oleaut32

SysFreeString
SafeArrayPtrOfIndex
GetErrorInfo

version

VerQueryValueA

gdi32

UnrealizeObject

ole32

CreateStreamOnHGlobal

comctl32

ImageList_SetIconSize

imm32

ImmSetCompositionWindow

Sections

.text
Size: 169KB - Virtual size: 408KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 939KB - Virtual size: 940KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ca1c7853b29bed02bab5cfa77f707413

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

oleaut32

version

gdi32

ole32

comctl32

imm32

Sections

.text Size: 169KB - Virtual size: 408KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 110KB - Virtual size: 110KB

.idata Size: 1KB - Virtual size: 4KB

.data Size: 512B - Virtual size: 1.1MB

.data Size: 939KB - Virtual size: 940KB

.data Size: 512B - Virtual size: 4KB

.text
Size: 169KB - Virtual size: 408KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 110KB - Virtual size: 110KB

.idata
Size: 1KB - Virtual size: 4KB

.data
Size: 512B - Virtual size: 1.1MB

.data
Size: 939KB - Virtual size: 940KB

.data
Size: 512B - Virtual size: 4KB