25720292bf04b523f823effc55c994ac_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

25720292bf04b523f823effc55c994ac_JaffaCakes118
Size

172KB
MD5

25720292bf04b523f823effc55c994ac
SHA1

fce5040717c5cf25bae60be6b0b6844f8675d103
SHA256

d2f65634c54fed7b05f8c3846b1a8878a304409f73067164cdc9dbf40dcbeec2
SHA512

0e3308d2cdffb26011b8f2bf95681efb8d01d08be912bca14b0aa0474db1fec31a75a02ae8f57c59a9cd494f5c5e6e635cb14bf858831e65ca019e154e49168e
SSDEEP

3072:lik2r1TviKeoak/7mhIM8vcZoWZSSwlnjDSoj+Frc3sB0j:likRKecyfoSogwlnXIrQx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
25720292bf04b523f823effc55c994ac_JaffaCakes118

Files

25720292bf04b523f823effc55c994ac_JaffaCakes118
.dll windows:4 windows x86 arch:x86

cf7f509cb8b1946f1aa8bd82220560c4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shlwapi

SHSetValueA
PathIsContentTypeA

gdi32

CreateBitmap
CreateFontIndirectA
GetTextAlign
GetBitmapBits
CreateCompatibleDC

oleaut32

GetErrorInfo
SysStringLen
SafeArrayPtrOfIndex
SysAllocStringLen
SysFreeString

kernel32

SetErrorMode
GetStringTypeW
WideCharToMultiByte
EnterCriticalSection
GetLocalTime
GlobalAddAtomA
lstrcpynA
lstrcatA
GetCurrentThreadId
ExitProcess
GetDiskFreeSpaceA
SetThreadLocale
IsBadHugeReadPtr
GlobalFindAtomA
VirtualAllocEx
WriteFile
FormatMessageA
FindFirstFileA
lstrlenA
VirtualAlloc
GetCurrentThread
GetModuleHandleA
GetUserDefaultLCID
SetHandleCount
GetModuleFileNameA
GetLocaleInfoA
GetFileSize
CompareStringA
GlobalDeleteAtom
GetOEMCP
GetCommandLineW
GetProcAddress
CreateFileA
LocalAlloc
lstrcpyA
FindResourceA
GetCPInfo
SizeofResource
GetThreadLocale
GetEnvironmentStrings
GetDateFormatA
HeapDestroy
SetEvent
MoveFileA

user32

MapVirtualKeyA
RegisterClipboardFormatA
GetMenuStringA
GetLastActivePopup
GetMenu
SetWindowPos
SetTimer
SetRect
PostQuitMessage
DrawEdge
UnhookWindowsHookEx
IsIconic
ActivateKeyboardLayout
IsWindowVisible
GetDC
GetCursorPos
DispatchMessageA
UpdateWindow
KillTimer
PostMessageA
GetScrollPos
GetFocus
GetWindow
LoadBitmapA
IsCharUpperA
GetKeyboardLayout
PtInRect
FillRect
IntersectRect
RegisterClassA
ShowScrollBar
InflateRect
wsprintfA
FrameRect
OpenClipboard
CreateMenu
InsertMenuItemA
SetPropA
CharLowerBuffA
ScrollWindow
CreateIcon
MapWindowPoints
CharUpperBuffA
CharLowerA
IsDialogMessageW
CharToOemA
GetDesktopWindow
EnableWindow
SetClipboardData
UnregisterClassA
WindowFromPoint
GetMenuState
SetForegroundWindow
DefFrameProcA
GetDCEx
DefMDIChildProcA
LoadIconA
ScreenToClient
ReleaseDC
EnableMenuItem
GetScrollInfo
ShowWindow
GetSystemMenu
GetWindowPlacement
SetWindowLongA
GetSystemMetrics
GetWindowThreadProcessId
MsgWaitForMultipleObjects
GetCursor
ShowOwnedPopups
SetFocus
GetMenuItemCount
MoveWindow
TrackPopupMenu
ClientToScreen
AdjustWindowRectEx
SetClassLongA
EnableScrollBar
CharNextA
CallNextHookEx
CharNextW
FindWindowA
DeleteMenu
SetScrollRange
IsWindow
SetParent
DispatchMessageW
GetWindowDC
GetWindowLongA
CallWindowProcA
GetIconInfo
GetMessagePos
DrawFrameControl
DestroyCursor
InsertMenuA
GetScrollRange
SetActiveWindow
GetMenuItemID
IsWindowUnicode
DrawIcon
LoadKeyboardLayoutA
CloseClipboard
PeekMessageW
IsRectEmpty
IsCharLowerA
CharUpperA
GetClassLongA
GetWindowRect
TranslateMDISysAccel
IsWindowEnabled
SendMessageA
SetWindowsHookExA
DefWindowProcA
LoadStringA
WaitMessage
GetWindowTextA
DrawMenuBar
GetForegroundWindow
OemToCharA
SetCapture
GetSysColorBrush
GetCapture
CheckMenuItem

Exports

Exports

ZcrZZ6@16
_Hb6h83KQlQM
LkpXLpbVHK

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 150KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cf7f509cb8b1946f1aa8bd82220560c4

Headers

File Characteristics

Imports

shlwapi

gdi32

oleaut32

kernel32

user32

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 12KB

.rdata Size: 6KB - Virtual size: 156KB

.data Size: 150KB - Virtual size: 152KB

.rsrc Size: 1024B - Virtual size: 4KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 12KB - Virtual size: 12KB

.rdata
Size: 6KB - Virtual size: 156KB

.data
Size: 150KB - Virtual size: 152KB

.rsrc
Size: 1024B - Virtual size: 4KB

.reloc
Size: 2KB - Virtual size: 2KB