141adb3a66688181cdb88511e0ab4290_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

141adb3a66688181cdb88511e0ab4290_JaffaCakes118
Size

116KB
MD5

141adb3a66688181cdb88511e0ab4290
SHA1

f405d379d9b8b66f35c53f4ee5df205bddaad9a5
SHA256

029a48432fb1711de24a563f629cb71b4cd745c18d0732fd8c257d8487dfe7a0
SHA512

f5d3a39c74b33ca5d17124a36c845854eed7a27b32ff9af824b8fb7ecde4c6e9076e4df7e496cbbd7fa862c684492abdcb12b3e7aa1043220ea68760e6e241a8
SSDEEP

1536:tXJNEGgRWB2I7aK5lqtAMZgvKA+j6T0M8vfkdO5sruN6l29+qTf1qPz3i31:3NmQaxZgvKdOT0MZdkN6l29+q7Iz3iF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
141adb3a66688181cdb88511e0ab4290_JaffaCakes118

Files

141adb3a66688181cdb88511e0ab4290_JaffaCakes118
.dll windows:4 windows x86 arch:x86

1e6043d8e7ae59362950788244654abe

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

IsValidLocale
VirtualAlloc
GetModuleHandleA
GetHandleInformation
GetEnvironmentStringsW
GlobalUnlock
OpenConsoleW
ReleaseSemaphore
FreeLibrary
InitializeCriticalSectionAndSpinCount
RegisterWaitForSingleObject
GetVersion
LoadLibraryA
WriteFileGather
EnumSystemCodePagesA
GetProcAddress
GetLocalTime
GetVolumeNameForVolumeMountPointA
ReadConsoleInputA
RtlUnwind
WaitForSingleObject
UnhandledExceptionFilter
ReplaceFile
CloseProfileUserMapping
LocalCompact
DuplicateHandle
GetSystemTime
VerLanguageNameA
_lwrite
SetLocaleInfoA
lstrcmpW

user32

CharPrevA
OemToCharA
CharUpperA
DlgDirListW
GetMessageTime
CopyImage
TranslateMessage
DispatchMessageA
DestroyIcon
GetParent
SetCursorPos
LoadKeyboardLayoutA
SetPropW
CreateIconFromResource
LoadBitmapA
GetCursor
SetMenuDefaultItem
IMPQueryIMEW
IsWindowUnicode
PeekMessageA
SendDlgItemMessageA
RegisterClassExW
ChangeDisplaySettingsExA
GetCaretBlinkTime
PtInRect
PostMessageA
DrawMenuBar
RegisterClassExA
DdeSetUserHandle
CreateDesktopW
MapVirtualKeyExW
GetActiveWindow
DrawStateA
EnumClipboardFormats
CascadeWindows
SetScrollRange
GetAltTabInfoW
DefDlgProcW
CopyAcceleratorTableW
GetKeyboardLayoutList
ReuseDDElParam
IsIconic
CreateMDIWindowW
GetWindowRect

version

GetFileVersionInfoSizeA
VerInstallFileW
VerInstallFileA
VerFindFileA

winmm

mixerGetLineInfoW
midiOutGetErrorTextW
midiInGetErrorTextA
mciGetErrorStringA
waveInReset
mci32Message
mciGetDeviceIDW
mmioSeek
mmioInstallIOProcW
sndPlaySoundA
tid32Message
mixerMessage
mmioFlush
mciSendCommandA
waveInClose
waveOutSetVolume
mmioAdvance
joySetCapture
waveInStart
PlaySoundA
timeGetTime
waveOutPrepareHeader
midiOutSetVolume
mciExecute
midiStreamStop
mmioRenameA
waveInGetID
waveOutGetDevCapsA
mciGetDeviceIDFromElementIDW
wid32Message
mmioGetInfo
waveInStop
mmGetCurrentTask
midiOutGetErrorTextA
waveInGetErrorTextA
mixerGetControlDetailsW
mmioSetInfo
waveOutPause
mixerGetID

msvcrt

_mbscmp
_mbsstr
_mbsspnp
_mbsrchr
_daylight
fwrite
strcoll
_unlink
memset
fseek
fclose
fprintf
fputc
_inpw
_wfindfirsti64
ctime
_acmdln
_chdir
_itow
_ismbckata
__CxxLongjmpUnwind
ferror
printf
fread
_CIfmod
_fstati64
_clearfp
_y0
ftell
putc
feof
_outpd
freopen
__p__tzname
fopen
sprintf
fwprintf
fsetpos
_wstat
fputs
_chgsign

Exports

Exports

Ahmmfgywna
Fpwkyk
Ntirdryab
Ovcyan
Wtuzccax
Yxcf
Zrxesg

Sections

.text
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1e6043d8e7ae59362950788244654abe

Headers

File Characteristics

Imports

kernel32

user32

version

winmm

msvcrt

Exports

Exports

Sections

.text Size: 44KB - Virtual size: 43KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 52KB - Virtual size: 49KB

.reloc Size: 8KB - Virtual size: 6KB

.text
Size: 44KB - Virtual size: 43KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 52KB - Virtual size: 49KB

.reloc
Size: 8KB - Virtual size: 6KB