0b9bf1e62c5800c2dcd033112d586465_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0b9bf1e62c5800c2dcd033112d586465_JaffaCakes118
Size

88KB
MD5

0b9bf1e62c5800c2dcd033112d586465
SHA1

47e4895833653fb5dbe0575c9ca0289050b6a2e8
SHA256

61e8be4db95bcfa07ace1f20696d2825879bae8be4e1009c723aec6fa4383e8e
SHA512

edcdae4eee51b106e6410fd9ead01f45101add30be61b6c91b690d647d9bcec4932a6ec0dcf2b991f79efb5ce7354828473e3df3874d4eab6d370d8f1b6d8f5a
SSDEEP

1536:zbKP+XxEdbqe78ZmXKDO3SCOu1GVYmEf6dXFaaqGQx:HK+xiqe7fKIwuwKmtc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0b9bf1e62c5800c2dcd033112d586465_JaffaCakes118

Files

0b9bf1e62c5800c2dcd033112d586465_JaffaCakes118
.dll windows:4 windows x86 arch:x86

0989e0bd768aafde029ae12ae5e7ff9a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetPrivateProfileStringA
GetModuleFileNameA
GetLocalTime
VirtualProtect
ExitProcess
GetVersionExA
GetCurrentProcess
GetLastError
GetModuleHandleA
GetProcAddress
lstrcmpA

user32

GetAsyncKeyState
ExitWindowsEx
MessageBoxA

gdi32

DeleteObject
GetTextExtentPointA
SelectObject
CreateFontA

advapi32

LookupPrivilegeValueA
AdjustTokenPrivileges
OpenProcessToken

shell32

ShellExecuteA

winmm

timeGetTime

msvcp60

?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
??Mstd@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??0_Lockit@std@@QAE@XZ
??1_Lockit@std@@QAE@XZ
??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@PBDH@Z
?getline@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PADHD@Z
??_D?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAEXXZ
??_F?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
??0Init@ios_base@std@@QAE@XZ
??1Init@ios_base@std@@QAE@XZ
??0_Winit@std@@QAE@XZ
??1_Winit@std@@QAE@XZ
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?_Freeze@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??8std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@PBD@Z

msvcrt

?terminate@@YAXXZ
_initterm
malloc
_stricmp
_adjust_fdiv
_except_handler3
sqrt
atan2
__CxxFrameHandler
strcmp
tolower
strlen
toupper
??2@YAPAXI@Z
sin
cos
acos
strcpy
vsprintf
memset
_vsnprintf
_ftol
sprintf
strncpy
strstr
_strlwr
atof
sscanf
memcpy
strtoul
rand
fabs
memcmp
free
__dllonexit
_onexit

opengl32

glColor3f
glClearColor
glGetFloatv
glClear
wglUseFontBitmapsA
glGenLists
wglGetCurrentDC
glEnable
glDisable
glPopAttrib
glCallLists
glListBase
glPushAttrib
glHint
glRasterPos2i
glColor4ub
glBlendFunc
glTexEnvi
glColor4f

Exports

Exports

CreateInterface

Sections

.text
Size: 56KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0989e0bd768aafde029ae12ae5e7ff9a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

winmm

msvcp60

msvcrt

opengl32

Exports

Exports

Sections

.text Size: 56KB - Virtual size: 52KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 8KB - Virtual size: 2.1MB

.reloc Size: 12KB - Virtual size: 11KB

.text
Size: 56KB - Virtual size: 52KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 8KB - Virtual size: 2.1MB

.reloc
Size: 12KB - Virtual size: 11KB