0d1c07bd57af792d0e617f2d99126dee_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0d1c07bd57af792d0e617f2d99126dee_JaffaCakes118
Size

231KB
MD5

0d1c07bd57af792d0e617f2d99126dee
SHA1

1d22f3a6da40668ffb3e11265a1169b3d0649bf0
SHA256

55ef817ea0ed29ada5a766d3a208af5e80ee8f05263d62b424c0266586121531
SHA512

0f8cc24788ec5b7c4afc7c0e8ce3c52b6f562ecc8c1e6f2657a2aa89b2e34b50c2be046c8cbabcfa85d5c94088853d58c8f278ca478186a4da664a77683eb3c5
SSDEEP

3072:FnJztPmNhnIiaDCjqW9DKZr9+VwYddG+czMoKUT:TxmL1aDMqQDK6Ce8j

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0d1c07bd57af792d0e617f2d99126dee_JaffaCakes118

Files

0d1c07bd57af792d0e617f2d99126dee_JaffaCakes118
.dll windows:5 windows x86 arch:x86

74b03ff2b4a99bfd58211a6d2ba6f41b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

EnumResourceNamesW
EnumSystemLanguageGroupsA
FindNextVolumeMountPointA
FormatMessageA
GetCurrentThreadId
GetModuleHandleA
GetPrivateProfileStringA
GetShortPathNameA
GetStartupInfoA
GetStartupInfoW
GetStdHandle
GetTickCount
GetVersionExA
DeleteFileA
LCMapStringW
MoveFileA
MultiByteToWideChar
OpenFileMappingW
OpenMutexW
PrepareTape
SetLastError
SetThreadAffinityMask
SetThreadPriorityBoost
Thread32Next
WriteFileEx
WriteProfileSectionW
VirtualAllocEx
CreateFileW
lstrcatW
GlobalFindAtomW
GetWindowsDirectoryW

user32

BeginPaint
UpdateWindow
ScrollWindow
SetScrollPos
SetScrollRange
ReleaseDC
GetDC
AppendMenuA
CallMsgFilterW
CallWindowProcW
CascadeWindows
ChangeDisplaySettingsW
CharToOemA
CharUpperW
CheckMenuItem
ChildWindowFromPoint
CloseDesktop
CopyAcceleratorTableA
CopyImage
CopyRect
CreateIconFromResourceEx
CreateMDIWindowA
CreatePopupMenu
DdeClientTransaction
DdeCreateStringHandleW
DdeFreeStringHandle
DdePostAdvise
DdeQueryStringW
DdeSetQualityOfService
DeregisterShellHookWindow
DrawStateA
DrawStateW
EndDialog
EndMenu
EndPaint
GetAltTabInfo
GetAsyncKeyState
GetClassLongW
GetClassNameW
GetClipboardOwner
GetClipboardSequenceNumber
GetComboBoxInfo
GetInputState
GetKeyboardLayout
GetLastActivePopup
GetMenuItemID
GetMessageA
GetProcessWindowStation
GetScrollPos
GetScrollRange
GetSubMenu
GetUpdateRect
GetWindowDC
GetWindowLongW
GetWindowRgn
GetWindowThreadProcessId
GetWindowWord
IMPGetIMEA
IMPQueryIMEA
IMPSetIMEW
InSendMessageEx
InsertMenuItemA
IsCharAlphaNumericW
IsCharUpperW
IsDialogMessageA
LoadKeyboardLayoutW
LockWorkStation
MoveWindow
OemToCharBuffW
OemToCharW
OpenWindowStationA
RealChildWindowFromPoint
RegisterClassExA
RegisterDeviceNotificationW
RemoveMenu
ScrollDC
SendDlgItemMessageA
SendMessageCallbackW
SendMessageW
SendNotifyMessageW
SetClassLongW
SetDlgItemTextW
SetForegroundWindow
SetScrollInfo
SetSysColors
SetWindowWord
SystemParametersInfoA
SystemParametersInfoW
TabbedTextOutA
TileWindows
ToAscii
TrackPopupMenuEx
TranslateMessage
UnhookWinEvent
UnhookWindowsHookEx
VkKeyScanA
VkKeyScanExA
WaitForInputIdle
WindowFromDC
PostQuitMessage
DefWindowProcA
LoadIconA
CreateWindowExA
EnumChildWindows

gdi32

TextOutA
GetTextMetricsA

advapi32

RegOpenKeyExA

Sections

.text
Size: 203KB - Virtual size: 203KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data9
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data8
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data7
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data6
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data5
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data4
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data3
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

74b03ff2b4a99bfd58211a6d2ba6f41b

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 203KB - Virtual size: 203KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 5KB - Virtual size: 4KB

.data9 Size: 2KB - Virtual size: 1KB

.data8 Size: 2KB - Virtual size: 1KB

.data7 Size: 2KB - Virtual size: 1KB

.data6 Size: 2KB - Virtual size: 1KB

.data5 Size: 2KB - Virtual size: 1KB

.data4 Size: 2KB - Virtual size: 1KB

.data3 Size: 2KB - Virtual size: 1KB

.data2 Size: 2KB - Virtual size: 1KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 203KB - Virtual size: 203KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 5KB - Virtual size: 4KB

.data9
Size: 2KB - Virtual size: 1KB

.data8
Size: 2KB - Virtual size: 1KB

.data7
Size: 2KB - Virtual size: 1KB

.data6
Size: 2KB - Virtual size: 1KB

.data5
Size: 2KB - Virtual size: 1KB

.data4
Size: 2KB - Virtual size: 1KB

.data3
Size: 2KB - Virtual size: 1KB

.data2
Size: 2KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 1KB