0de31c920ffee6a3575021fcc5b0b15d_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

0de31c920ffee6a3575021fcc5b0b15d_JaffaCakes118
Size

227KB
MD5

0de31c920ffee6a3575021fcc5b0b15d
SHA1

2af1f3baf8b578e6002b74f083781895e049834e
SHA256

f30aafdf3bc6eadf2d149372133314521250bb42ba29f145a105733faf8ac5b3
SHA512

4ae4e1498418e67463aa10b0dee1cbfb37600470158feb31837beaf45c1b7c042e4a22faee6d1b0268c6224f3a0b278279122b90f04a05d63dc2436f0dd6f14b
SSDEEP

6144:SknAFmd6t5/uz3wZoWlEys9v5PeTCfiFS:lI0wZoWlEVPei

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0de31c920ffee6a3575021fcc5b0b15d_JaffaCakes118

Files

0de31c920ffee6a3575021fcc5b0b15d_JaffaCakes118
.dll windows:1 windows x86 arch:x86

4dc5084ae33281ee6e140f484e810660

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetFilePointer
FlushFileBuffers
WriteFile
WritePrivateProfileStringA
GetVolumeInformationA
GetFullPathNameA
GetModuleFileNameA
LocalUnlock
LocalLock
GlobalAlloc
LockResource
GetACP
GetOEMCP
GetCPInfo
LoadLibraryA
ExitProcess
VirtualFree
VirtualAlloc
GetStdHandle
GetFileType
GetStartupInfoA
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadWritePtr
IsBadCodePtr
SetStdHandle
TlsFree
DeleteCriticalSection
MultiByteToWideChar
WideCharToMultiByte
GetModuleHandleA
InitializeCriticalSection
GetProcAddress
TlsGetValue
FreeLibrary
GetLastError
LocalAlloc
SetLastError
LocalFree
lstrcmpA
TlsAlloc
GetVersion
CloseHandle
lstrcmpiA
FindResourceA
TlsSetValue
GetCurrentThread
GlobalFree
GlobalDeleteAtom
RtlUnwind
GlobalLock
lstrcpyA
MulDiv
lstrlenA
LoadResource
GlobalUnlock
GlobalGetAtomNameA
GetEnvironmentStrings
FreeResource
GetTickCount
EnterCriticalSection
lstrcatA
LeaveCriticalSection
GetCurrentThreadId
GlobalAddAtomA
GetCommandLineA
RaiseException

user32

DeferWindowPos
ScreenToClient
AdjustWindowRectEx
SetActiveWindow
SetRect
SystemParametersInfoA
SendDlgItemMessageA
IsDialogMessageA
GetNextDlgTabItem
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
LoadBitmapA
GetMenuCheckMarkDimensions
SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
PostMessageA
PeekMessageA
SetCursor
GetDesktopWindow
ShowWindow
GetActiveWindow
DestroyMenu
LoadMenuA
LoadIconA
SetMenu
ReuseDDElParam
UnpackDDElParam
SetWindowTextA
GetKeyState
IsIconic
BringWindowToTop
KillTimer
WindowFromPoint
SetTimer
PostQuitMessage
ShowOwnedPopups
MessageBoxA
ValidateRect
GetClassNameA
EndDialog
CreateDialogParamA
DialogBoxParamA
DialogBoxIndirectParamA
GetDCEx
LockWindowUpdate
CharUpperA
OemToCharA
CharToOemA
RegisterWindowMessageA
GetTabbedTextExtentA
IsClipboardFormatAvailable
MessageBeep
SetParent
SetDlgItemTextA
InvertRect
EnableWindow
BeginDeferWindowPos
EqualRect
GetDlgItem
EndDeferWindowPos
IsChild
GetCapture
wsprintfA
GetClassInfoA
GetMenu
GetMenuItemCount
GetSubMenu
FillRect
GetWindowTextLengthA
GetWindowTextA
DestroyWindow
CreateWindowExA
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
SetPropA
GetPropA
RemovePropA
CallWindowProcA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
IsWindowEnabled
GetWindowRect
GetWindowLongA
SetWindowLongA
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
DefWindowProcA
GetCursorPos
UnregisterClassA
LoadCursorA
RegisterClassA
MoveWindow
GetDlgCtrlID
PtInRect
GetParent
SendMessageA
SetWindowPos
UpdateWindow
InvalidateRect
GetClientRect
IntersectRect
IsRectEmpty
InflateRect
LoadStringA
GetFocus
OffsetRect
ClientToScreen
SetCapture
DispatchMessageA
GetMessageA
TranslateMessage
ReleaseCapture
IsWindow
GetTopWindow
IsWindowVisible
SetFocus
GetSystemMetrics
GetSysColor
CopyRect
GetMenuItemID
WinHelpA

gdi32

SetAbortProc
StartPage
EndPage
EndDoc
AbortDoc
CreateDCA
GetCharWidthA
GetTextMetricsA
CreateRectRgnIndirect
SetRectRgn
CombineRgn
CreateFontIndirectA
StretchDIBits
CreateDIBitmap
Escape
TextOutA
RectVisible
PtVisible
CreateSolidBrush
CreatePen
GetDeviceCaps
GetStockObject
PatBlt
BitBlt
CreateCompatibleBitmap
CreateBitmap
DPtoLP
GetObjectA
CreateCompatibleDC
CreatePatternBrush
ExtTextOutA
GetTextExtentPointA
StartDocA
RestoreDC
SelectObject
SetBkColor
SetBkMode
SetTextColor
SetViewportOrgEx
OffsetViewportOrgEx
SetMapMode
ScaleViewportExtEx
ScaleWindowExtEx
GetClipBox
SetWindowExtEx
IntersectClipRect
SelectClipRgn
SetTextAlign
DeleteObject
CreateRectRgn
SetViewportExtEx
SaveDC
DeleteDC

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

comdlg32

GetOpenFileNameA
PrintDlgA
ReplaceTextA
FindTextA
GetSaveFileNameA
GetFileTitleA
CommDlgExtendedError

advapi32

RegCloseKey
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA

shell32

DragQueryFileA
DragFinish

Exports

Exports

HEMenuBarInit
MenuBarWndProc

Sections

.text
Size: 117KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 13KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4dc5084ae33281ee6e140f484e810660

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

comdlg32

advapi32

shell32

Exports

Exports

Sections

.text Size: 117KB - Virtual size: 116KB

.bss Size: - Virtual size: 13KB

.rdata Size: 17KB - Virtual size: 16KB

.data Size: 10KB - Virtual size: 10KB

.idata Size: 7KB - Virtual size: 6KB

.edata Size: 56KB - Virtual size: 56KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 14KB - Virtual size: 13KB

.text
Size: 117KB - Virtual size: 116KB

.bss
Size: - Virtual size: 13KB

.rdata
Size: 17KB - Virtual size: 16KB

.data
Size: 10KB - Virtual size: 10KB

.idata
Size: 7KB - Virtual size: 6KB

.edata
Size: 56KB - Virtual size: 56KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 14KB - Virtual size: 13KB