184996988d229f05140a11411b054937_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

184996988d229f05140a11411b054937_JaffaCakes118
Size

44KB
MD5

184996988d229f05140a11411b054937
SHA1

0f461c981b72a8a023d11ad127f95adcb2231e4d
SHA256

d2ea8b3e2b99efc8f830b95d56f3d5250a4a1ef5755d399b80b1724296a41c3e
SHA512

6df94f1f91c15aea612ecda1f726cd70ab99d98934a6a208479044f6a8b7dca3a3a5e0edea1e908adb3ee6ca3e619a061b995e973daeb99cbf47768b9873010b
SSDEEP

768:GuQgMoW0STNsuqhAzkYvTf6EvvmVEvJ8JE6tJ/ubRRIdBW8QG03tfdkDw4:Fi0Sxxzlv+jEZ6/qRRIdB7jifdKv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
184996988d229f05140a11411b054937_JaffaCakes118

Files

184996988d229f05140a11411b054937_JaffaCakes118
.dll windows:4 windows x86 arch:x86

3140bb60db0b8f0585457312d195e62c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

FindFirstChangeNotificationW
GetComputerNameA
VirtualAlloc
ExitThread
OpenFile
GetLogicalDrives
VirtualFree
GetCurrentProcess
GetOverlappedResult
EraseTape
SwitchToFiber
CallNamedPipeA
FindResourceA
SearchPathW
GetLastError
FreeLibrary
GetFileSize
InterlockedDecrement
GetProcAddress
VerLanguageNameA
GetEnvironmentVariableA
LeaveCriticalSection
GetTempPathA
CreateDirectoryA
GetStartupInfoA
WritePrivateProfileStructA

msvcrt

_wcreat
_filbuf
_amsg_exit
fputws
tanh
isgraph
memcpy
_execve
_ismbcsymbol
_setmbcp
isxdigit
iswxdigit
_futime
clearerr
_cwait
_mbsnicmp
_strnicoll
_fdopen
_mbctype
iswdigit

comdlg32

ChooseColorW
Ssync_ANSI_UNICODE_Struct_For_WOW
GetSaveFileNameA
dwOKSubclass
ReplaceTextW
PrintDlgA
CommDlgExtendedError
PrintDlgW
ChooseFontA
GetOpenFileNameA
ChooseFontW

winmm

midiStreamPosition
DrvGetModuleHandle
waveInGetNumDevs
mciDriverNotify
waveOutGetPitch
joySetThreshold
midiInGetErrorTextW

opengl32

wglGetPixelFormat
glTexCoord2s
glClearAccum
glGetPolygonStipple
glTexCoord2dv
glTexCoord1dv
glRasterPos3s
glLoadMatrixd
glRectf
glCallLists
glOrtho
glTexCoord1fv
glVertex3s
glColor3usv
glTexCoord4dv
GlmfInitPlayback
glGetTexGeniv
glTexParameteri
wglUseFontOutlinesA

Exports

Exports

MhqothoOkp
HcbfhmcWireccGlybujb
AcnCbfohssHf
GjKnqxfud
InIbsfdFhttkcbHwx

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 54B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3140bb60db0b8f0585457312d195e62c

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

comdlg32

winmm

opengl32

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 12KB

.rdata Size: 11KB - Virtual size: 10KB

.data Size: 8KB - Virtual size: 8KB

.rsrc Size: 10KB - Virtual size: 10KB

.reloc Size: 512B - Virtual size: 54B

.text
Size: 12KB - Virtual size: 12KB

.rdata
Size: 11KB - Virtual size: 10KB

.data
Size: 8KB - Virtual size: 8KB

.rsrc
Size: 10KB - Virtual size: 10KB

.reloc
Size: 512B - Virtual size: 54B