05fecab7f33ecf30ce451f5da76d1d5c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

05fecab7f33ecf30ce451f5da76d1d5c_JaffaCakes118
Size

236KB
MD5

05fecab7f33ecf30ce451f5da76d1d5c
SHA1

72abb9b404956da5dc240401081b484255822d61
SHA256

804dfc30016247790b8674d6e2d55386a6acca1123ea5ec6b514a2e33aa877c4
SHA512

de19415741aa249d90b755cfa9e820212cc5eee3c8bb8bcbfa45481353079e6317aa6ddaf7ede42d5af6f96c09243ff72b51cf708c836f020d2d359fcc6ce40f
SSDEEP

3072:4xW7v05upmMoKGW0mxuIVv+zoajX895NgXxg4IrqI9FU2b:4o7MhZ4E1jMCXnAhv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
05fecab7f33ecf30ce451f5da76d1d5c_JaffaCakes118

Files

05fecab7f33ecf30ce451f5da76d1d5c_JaffaCakes118
.dll windows:4 windows x86 arch:x86

25f9ae295e88495d031bc69a0fea68be

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetACP

user32

SetDlgItemTextW
SetWindowLongA
SetWindowLongW
GetWindowLongA
GetWindowLongW
FindWindowA
FindWindowW
DrawTextA
wvsprintfA
wvsprintfW
IsDialogMessageA
IsDialogMessageW
SystemParametersInfoA
SystemParametersInfoW
RegisterWindowMessageA
RegisterWindowMessageW
SetMenuItemInfoA
SetMenuItemInfoW
GetClassNameA
GetClassNameW
InsertMenuA
InsertMenuW
IsCharAlphaNumericA
IsCharAlphaNumericW
CharNextW
LoadBitmapA
LoadBitmapW
LoadCursorA
LoadCursorW
LoadIconA
LoadIconW
LoadImageA
LoadImageW
SetPropA
SetPropW
GetPropA
RemovePropA
RemovePropW
GetDlgItemTextA
SetDlgItemTextA
CallWindowProcW
CallWindowProcA
PostMessageW
PostMessageA
PostThreadMessageW
PostThreadMessageA
PeekMessageW
SetWindowsHookExA
CreateDialogIndirectParamW
CreateDialogIndirectParamA
DrawTextExW
DrawTextExA
CreateAcceleratorTableW
CreateAcceleratorTableA
TranslateAcceleratorW
TranslateAcceleratorA
GetMessageW
GetMessageA
DispatchMessageW
DispatchMessageA
DefWindowProcW
DefWindowProcA
CharLowerW
CharLowerA
CharUpperW
CharUpperA
DialogBoxParamW
DialogBoxParamA
CreateDialogParamW
CreateDialogParamA
LoadMenuW
LoadMenuA
LoadAcceleratorsW
LoadAcceleratorsA
CreateWindowExW
CreateWindowExA
RegisterClassW
RegisterClassA
RegisterClassExW
GetClassInfoW
GetClassInfoA
GetClassInfoExW
GetClassInfoExA
LoadStringW
LoadStringA
GetWindowTextLengthW
GetWindowTextLengthA
GetWindowTextW
SetWindowTextW
SendDlgItemMessageW
GetDlgItem
SendMessageW
SendMessageA
GetKeyboardLayoutList
GetLastInputInfo
SetWindowsHookExW
GetPropW
GetDlgItemTextW
PeekMessageA

advapi32

FreeSid
AllocateAndInitializeSid
CheckTokenMembership

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Exports

Exports

ATouuuyjh

Sections

.text
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 102B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

adata
Size: 132KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 696B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

25f9ae295e88495d031bc69a0fea68be

Headers

File Characteristics

Imports

kernel32

user32

advapi32

version

Exports

Exports

Sections

.text Size: 32KB - Virtual size: 29KB

.data Size: 4KB - Virtual size: 102B

adata Size: 132KB - Virtual size: 130KB

.rsrc Size: 60KB - Virtual size: 57KB

.reloc Size: 4KB - Virtual size: 696B

.text
Size: 32KB - Virtual size: 29KB

.data
Size: 4KB - Virtual size: 102B

adata
Size: 132KB - Virtual size: 130KB

.rsrc
Size: 60KB - Virtual size: 57KB

.reloc
Size: 4KB - Virtual size: 696B