1186e513e282bc45c4baa01b1681dbcd_JaffaCakes118

General

Target

1186e513e282bc45c4baa01b1681dbcd_JaffaCakes118
Size

96KB
MD5

1186e513e282bc45c4baa01b1681dbcd
SHA1

84079313773a7b1ed8e29e77f2489c5fc16bf0b0
SHA256

5f12b6ac89a82122b285c3d3c711889621ee46b7b4ffe7acca28a7b4d83b3414
SHA512

e779939011513c4d7232d97a783feaadff7351f36660e4092f6adaef23f7325f5aeb5ec9580bce94984137abffaf9506b25cc29ddc942e5db02a3d29ddb337d8
SSDEEP

1536:ax/af349YTS3yL5PQNSe65RxE0IoIXY5ui2oBq4gsG77rU+Pt8LwaW4MqGBbM5:aMf344S3vB65Rx6oIo5uKLk7Btie4Mq3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1186e513e282bc45c4baa01b1681dbcd_JaffaCakes118

Files

1186e513e282bc45c4baa01b1681dbcd_JaffaCakes118
.dll windows:4 windows x86 arch:x86

897332951126086830cb346ec825def8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
DeleteFileA
ExitProcess
GetACP
GetCommandLineA
GetLastError
GetModuleHandleA
GetOEMCP
GetStartupInfoA
GetSystemTime
HeapAlloc
InterlockedIncrement
LeaveCriticalSection
LoadResource
RtlUnwind
SetCurrentDirectoryA
SetEndOfFile
SetLastError
WriteFile
lstrcpyA

advapi32

RegEnumKeyA
RegLoadKeyA
RegOpenKeyExA
RegQueryValueA
RegCloseKey

wininet

InternetSetStatusCallbackA
InternetSetOptionExA
InternetReadFile
InternetQueryDataAvailable
InternetGetLastResponseInfoA
InternetGetCookieA
InternetCrackUrlA
InternetConnectA
InternetCloseHandle
HttpQueryInfoA
HttpOpenRequestA
HttpAddRequestHeadersA
HttpSendRequestA

user32

DialogBoxParamA
MessageBoxA
CharNextA
CreateIcon
DefDlgProcA
IsCharLowerA
LoadImageA

shell32

Shell_NotifyIconA
ShellExecuteW
ShellExecuteExW
ShellExecuteExA
ShellExecuteA
SHGetPathFromIDListA
SHGetMalloc
SHGetFileInfoA
SHGetDesktopFolder
SHFileOperationA
SHBindToParent

Exports

Exports

Jmydr
Ukbzvsis
Yqs

Sections

.text
Size: 34KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

897332951126086830cb346ec825def8

Headers

File Characteristics

Imports

kernel32

advapi32

wininet

user32

shell32

Exports

Exports

Sections

.text Size: 34KB - Virtual size: 36KB

.rdata Size: 28KB - Virtual size: 32KB

.data Size: 4KB - Virtual size: 4KB

.idata Size: 2KB - Virtual size: 4KB

.rsrc Size: 26KB - Virtual size: 28KB

.text
Size: 34KB - Virtual size: 36KB

.rdata
Size: 28KB - Virtual size: 32KB

.data
Size: 4KB - Virtual size: 4KB

.idata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 26KB - Virtual size: 28KB