15550e5ac71ac8f6f4e19369cccf4fb6_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

15550e5ac71ac8f6f4e19369cccf4fb6_JaffaCakes118
Size

95KB
MD5

15550e5ac71ac8f6f4e19369cccf4fb6
SHA1

7e99c886ca7a81fbf8d551738972efe3c9cb3a92
SHA256

72e8856a1ebe2456b4088fdb5d5405a8669e505be91d502634239564ee74649c
SHA512

5efa366578eecc6080d6f06c6a2e320d667bc8c37cab65b6f1ac8e9a09832cfe9cd938a43ade847bc05940549fe7462eb101597ca16ec7f26716db8c4f52fb98
SSDEEP

1536:5cnODjO24WiIAwqrW8tH+CpR/fWNQ7V3LHPzXPg7rJuml/nnF3Ei/zmMvl0MhlpY:5LDjOhrI0qy+O/ft7NXA0ml/nVpzDvlw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
15550e5ac71ac8f6f4e19369cccf4fb6_JaffaCakes118

Files

15550e5ac71ac8f6f4e19369cccf4fb6_JaffaCakes118
.dll windows:4 windows x86 arch:x86

f0f1f763b7e11b9a7736b19ee675d272

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

GetWindowRect
DialogBoxParamW
EnableWindow
EndDialog
SystemParametersInfoW
SetWindowPos
SetWindowLongW
SetThreadDesktop
SetSysColors
SetDlgItemTextW
SendMessageTimeoutW
ReleaseDC
LoadStringW
CloseDesktop
GetWindowLongW
GetUserObjectInformationW
GetThreadDesktop
GetSystemMetrics
GetSysColor
GetDlgItem
GetDesktopWindow
GetDC
FindWindowExW

ole32

CoInitialize
CoUninitialize
CoCreateInstance

kernel32

lstrlenW
lstrcpyW
lstrcmpiW
lstrcatW
WriteFile
WideCharToMultiByte
VirtualQuery
VirtualProtect
VirtualFree
VirtualAlloc
UnhandledExceptionFilter
TerminateProcess
SetUnhandledExceptionFilter
SetHandleCount
RtlUnwind
QueryPerformanceCounter
MultiByteToWideChar
LocalFree
LocalAlloc
LoadLibraryW
ExitProcess
FreeEnvironmentStringsA
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCommandLineA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetEnvironmentStringsA
GetEnvironmentStringsW
GetFileType
GetLastError
GetLocaleInfoA
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetProcAddress
GetStartupInfoA
GetStartupInfoW
GetStdHandle
GetStringTypeA
GetStringTypeW
GetSystemTimeAsFileTime
GetTickCount
GetVersionExA
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
InterlockedExchange
LCMapStringA
LCMapStringW
LoadLibraryA

advapi32

RegSetValueExW
RegQueryValueExW
RegOpenKeyW
RegDeleteValueW
RegCreateKeyW
RegCloseKey

Exports

Exports

ExtractMyColorDataFromPrmStrm
Init

Sections

.text
Size: 81KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f0f1f763b7e11b9a7736b19ee675d272

Headers

File Characteristics

Imports

user32

ole32

kernel32

advapi32

Exports

Exports

Sections

.text Size: 81KB - Virtual size: 84KB

.data Size: 9KB - Virtual size: 12KB

.rsrc Size: 1KB - Virtual size: 4KB

.reloc Size: 2KB - Virtual size: 4KB

.text
Size: 81KB - Virtual size: 84KB

.data
Size: 9KB - Virtual size: 12KB

.rsrc
Size: 1KB - Virtual size: 4KB

.reloc
Size: 2KB - Virtual size: 4KB