088d126e2f3a3da0733c05874c905977_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

088d126e2f3a3da0733c05874c905977_JaffaCakes118
Size

293KB
MD5

088d126e2f3a3da0733c05874c905977
SHA1

9aee991fd5fa413e8a1295c56e9acb083d9f1b5f
SHA256

033218d00b9107100cd68963358c733a356c3083015899d8de3f7969e39f9f01
SHA512

238463d31fe7d82bbffc188c9b307f7cc0363ec98afb781391621a47da9adf6bbf712bb45eb8182a98802941bccae8153ee19413d700c3d0dd5d460d30b3cc81
SSDEEP

6144:Vf8Id5+PYVvXaLKtkQR3Ajj3KgimQ1mgO4M45:18a+wt8lOWj3Kgk164M

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
088d126e2f3a3da0733c05874c905977_JaffaCakes118

Files

088d126e2f3a3da0733c05874c905977_JaffaCakes118
.dll windows:4 windows x86 arch:x86

1826a7154c65b574eaf6f0d651370b80

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

wsprintfA
WindowFromDC
UnhookWindowsHookEx
TrackPopupMenu
SetWindowsHookExA
SetWindowPlacement
SetTimer
ReleaseDC
RegisterClassA
RedrawWindow
PostQuitMessage
PeekMessageA
MessageBoxA
KillTimer
IsWindow
IntersectRect
GetWindowLongA
GetSystemMetrics
GetQueueStatus
GetMenuState
GetMenu
GetDC
GetClientRect
GetAsyncKeyState
EqualRect
EnumDisplayMonitors
DefWindowProcA
DdeConnect
ClientToScreen
CallNextHookEx
AdjustWindowRectEx

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

opengl32

wglMakeCurrent

kernel32

VirtualQuery
WaitCommEvent
VirtualFree
VirtualAlloc
TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
TerminateProcess
SetUnhandledExceptionFilter
SetLastError
SetHandleCount
SetFilePointer
SetEndOfFile
RtlUnwind
WaitForSingleObject
WriteFile
VirtualProtect
ResetWriteWatch
ReadFile
CompareStringW
CreateFileA
CreateMutexA
EnterCriticalSection
EnumSystemLocalesA
ExitProcess
FlushFileBuffers
FreeEnvironmentStringsA
GetACP
GetCPInfo
GetCommandLineA
GetCurrentProcess
GetCurrentProcessId
GetEnvironmentStringsA
GetEnvironmentStringsW
GetEnvironmentVariableA
GetFileTime
GetFileType
GetLastError
GetLocaleInfoW
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetProcAddress
GetProcessPriorityBoost
GetStartupInfoA
GetStdHandle
GetStringTypeA
GetSystemInfo
GetSystemPowerStatus
GetSystemTimeAsFileTime
GetTickCount
GetUserDefaultLCID
GetVersionExA
GlobalAlloc
GlobalFree
GlobalUnfix
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsBadCodePtr
IsBadWritePtr
IsValidCodePage
LCMapStringA
LCMapStringW
LeaveCriticalSection
LocalAlloc
LocalSize
MultiByteToWideChar
OutputDebugStringA
QueryPerformanceCounter
QueueUserAPC
RaiseException

gdi32

GetDeviceCaps
GetCurrentObject
Escape
DescribePixelFormat
GetPixelFormat
DeleteDC
CreateDIBSection
CreateCompatibleDC
BitBlt
SelectObject
SetPixelFormat
DeleteObject

Exports

Exports

FromObject
FromStringAndSize
InPlaceOr
InitThreads
List_Fini
Number_ToBase
_ascii_atof
destroy_struct_2

Sections

.text
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 143KB - Virtual size: 143KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1826a7154c65b574eaf6f0d651370b80

Headers

File Characteristics

Imports

user32

advapi32

opengl32

kernel32

gdi32

Exports

Exports

Sections

.text Size: 84KB - Virtual size: 84KB

.rdata Size: 143KB - Virtual size: 143KB

.data Size: 35KB - Virtual size: 35KB

.rsrc Size: 25KB - Virtual size: 25KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 84KB - Virtual size: 84KB

.rdata
Size: 143KB - Virtual size: 143KB

.data
Size: 35KB - Virtual size: 35KB

.rsrc
Size: 25KB - Virtual size: 25KB

.reloc
Size: 3KB - Virtual size: 3KB