122984ac8a45eb10a109a0512c0170b2_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

122984ac8a45eb10a109a0512c0170b2_JaffaCakes118
Size

156KB
MD5

122984ac8a45eb10a109a0512c0170b2
SHA1

3a08ebfa2955374d3070857a7a30b371c8a07d45
SHA256

bbaea64d860b27ceea2b7bd79dea5970764aaf1bfe08d8a75abfc4b4bc900082
SHA512

fbb715e73f0db2503ec209809548b1832a4246da97f52ed39accfefca54432ac7a6f50e0141714dba145363838e5ac994be4baee972c5d4f98a35d43839ef0d0
SSDEEP

3072:gdTd3qM+xCpcH52hwQZb9Jcs/idkTWZ4xA4FehIM6AO:NMVcHw7Z2d864xOhZz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
122984ac8a45eb10a109a0512c0170b2_JaffaCakes118

Files

122984ac8a45eb10a109a0512c0170b2_JaffaCakes118
.dll windows:4 windows x86 arch:x86

9e1e4555da26bf988d20c7de4e2d8715

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetModuleFileNameW
GetTempFileNameA
GetTempFileNameW
GetFullPathNameA
GetFullPathNameW
VirtualQuery
GetSystemInfo
VirtualProtect
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
HeapSize
GetModuleFileNameA
GetOEMCP
VirtualFree
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
TlsAlloc
GetLastError
TlsGetValue
SetLastError
TlsFree
GetCurrentProcess
TerminateProcess
GetModuleHandleA
ExitProcess
GetCommandLineA
TlsSetValue
GetCurrentThreadId
RtlUnwind
CreateDirectoryW
CreateDirectoryA
GetPrivateProfileStringW
GetPrivateProfileStringA
GetFileAttributesW
GetFileAttributesA
GetShortPathNameW
GetShortPathNameA
GetTempPathW
GetTempPathA
DeleteFileW
DeleteFileA
CreateFileW
CreateFileA
LoadLibraryW
lstrlenA
lstrlenW
LocalAlloc
GetLocaleInfoA
GetACP
GetVersionExA
GetCPInfo
FreeLibrary
GetProcAddress
LoadLibraryA
SetErrorMode
LocalFree
HeapReAlloc
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GlobalReAlloc
HeapCreate
HeapDestroy
IsBadReadPtr
IsBadWritePtr
SetFilePointer
GetFileSize
ReadFile
WriteFile
CloseHandle
GlobalFlags
GlobalSize
HeapAlloc
HeapFree
MultiByteToWideChar
MulDiv
WideCharToMultiByte
GlobalAlloc
GlobalLock
GlobalUnlock
VirtualAlloc
GlobalFree

user32

CreateWindowExW
CreateWindowExA
UnregisterClassW
UnregisterClassA
RegisterClassW
RegisterClassA
RegisterClipboardFormatA
CharNextA
DefWindowProcW
CallWindowProcW
SendMessageW
PostMessageW
GetWindowLongW
SetClipboardData
FillRect
GetSysColorBrush
SetWindowLongW
LoadIconW
LoadCursorW
DialogBoxParamW
IsDialogMessageW
SetWindowsHookExW
SendNotifyMessageW
DefWindowProcA
CallWindowProcA
SendMessageA
PostMessageA
GetWindowLongA
SetWindowLongA
LoadIconA
LoadCursorA
DialogBoxParamA
IsDialogMessageA
SetWindowsHookExA
SendNotifyMessageA
SetFocus
BeginPaint
GetFocus
EndPaint
SetWindowPos
GetWindowRect
ScreenToClient
InvalidateRect
UpdateWindow
ClientToScreen
GetClientRect
FrameRect
GetKeyState
GetParent
IsWindow
SetCursor
ShowCursor
wsprintfA
GetSysColor
OpenClipboard
EmptyClipboard
CloseClipboard
IsClipboardFormatAvailable
GetClipboardData
GetDC
ReleaseDC
RegisterClipboardFormatW

gdi32

GdiComment
StretchDIBits
StretchBlt
RectVisible
SaveDC
SetMapMode
SetViewportExtEx
EnumMetaFile
RestoreDC
CreateBitmap
CreatePatternBrush
PatBlt
LPtoDP
SetBrushOrgEx
CreateSolidBrush
UnrealizeObject
GetStockObject
TextOutW
PlayMetaFileRecord
SetEnhMetaFileBits
GetWinMetaFileBits
DeleteEnhMetaFile
CreatePalette
GetObjectType
SetMetaFileBitsEx
GetMetaFileBitsEx
SetWindowOrgEx
SetWindowExtEx
SetStretchBltMode
BitBlt
CloseMetaFile
GetDeviceCaps
CreateCompatibleBitmap
CreateCompatibleDC
SelectObject
DeleteObject
SelectPalette
RealizePalette
DeleteDC
DeleteMetaFile
GetSystemPaletteEntries
GetPaletteEntries
PlayMetaFile
CreateFontIndirectA
CreateFontIndirectW
CreateMetaFileA
CreateMetaFileW
CopyMetaFileA
CopyMetaFileW
GetMetaFileA
GetMetaFileW
GetObjectA
GetObjectW
GetDIBits

comdlg32

ChooseColorA
ChooseColorW

Exports

Exports

CreateImageControl
CreateImageControlEx
GetFilterStrings
GetFilterStringsW
GetICErrorCode
GetImageExportFilters
GetImageExportFiltersW
ICFreeAllLibraries
ICGetVersion
IC_WndProc
MetaEnumProc
_WndProcU@16

Sections

.text
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9e1e4555da26bf988d20c7de4e2d8715

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Exports

Exports

Sections

.text Size: 68KB - Virtual size: 66KB

.rdata Size: 12KB - Virtual size: 9KB

.data Size: 60KB - Virtual size: 60KB

.rsrc Size: 4KB - Virtual size: 896B

.reloc Size: 8KB - Virtual size: 6KB

.text
Size: 68KB - Virtual size: 66KB

.rdata
Size: 12KB - Virtual size: 9KB

.data
Size: 60KB - Virtual size: 60KB

.rsrc
Size: 4KB - Virtual size: 896B

.reloc
Size: 8KB - Virtual size: 6KB