2a5b096ea1e8560ae0abdf07b50732c0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2a5b096ea1e8560ae0abdf07b50732c0_JaffaCakes118
Size

36KB
MD5

2a5b096ea1e8560ae0abdf07b50732c0
SHA1

603002cf34da6773c718b4870a8747e84ba6c9ca
SHA256

93736bb3829b214eedf5d0a001df8a2993119532ae1e81ce7a016300c0bf07f9
SHA512

e041cb75fd6eae4be8721bf2f0494bd0f9e01da7f694f3a66f962e2091f11d49703a900296fd72be78dac4bd671f35aaab0654e6627932f1d5374dc8cf9f9cc4
SSDEEP

768:I+LfRASRRXH1sYRQSJxaWGky0IxApt9qUv2zxjV6spE:hRASRRXVssJxaAy0Ixctt2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2a5b096ea1e8560ae0abdf07b50732c0_JaffaCakes118

Files

2a5b096ea1e8560ae0abdf07b50732c0_JaffaCakes118
.dll windows:4 windows x86 arch:x86

b2bc879f443713918e72526d34edb1bb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

ExitProcess
CreateFileW
ReadFile
VirtualAlloc
GetLocaleInfoA
lstrcmpiA
FindClose
FindNextFileA
FindFirstFileA
CloseHandle
GetLocalTime
WriteFile
lstrlenA
SetEndOfFile
SetFilePointer
GetFileSize
CreateFileA
GetDiskFreeSpaceA
GetLastError
CreateDirectoryA
SystemTimeToFileTime
GetSystemTime
DeleteFileA
lstrcmpA
TlsSetValue
TlsGetValue
ReleaseMutex
TlsFree
TlsAlloc
WaitForSingleObject
CreateMutexA
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetStartupInfoA

user32

LoadIconA
LoadCursorW
IsWindowEnabled
GetDlgItem
GetKeyState
CharNextA
IsWindowVisible
DrawFocusRect
OffsetRect
PeekMessageA
EnumThreadWindows
SetFocus
IsRectEmpty
RegisterClipboardFormatA
SetRectEmpty
DrawIcon
GetMenu
SendDlgItemMessageA
GetDlgItemTextA
CreateWindowExA
CheckDlgButton
DestroyIcon
CharUpperBuffA
CharLowerA
ScrollWindow
BringWindowToTop
UpdateWindow
ReleaseDC
GetDC
GetSysColor
LoadStringA
LoadCursorA
GetSysColorBrush
LoadAcceleratorsA
DispatchMessageA
TranslateMessage
TranslateAcceleratorA
GetMessageA
SendMessageA
ShowWindow
GetTopWindow
GetSystemMetrics
MessageBoxA
DialogBoxParamA
IsWindow
GetClientRect
SetDlgItemTextA
EndDialog
SetWindowTextA
EnableMenuItem
DestroyMenu
InsertMenuA
CreatePopupMenu
DeleteMenu
IsClipboardFormatAvailable
GetSubMenu
PostQuitMessage
InvalidateRect
CloseClipboard
GetClipboardData
OpenClipboard
PostMessageA
DefWindowProcA
RegisterClassA
DestroyWindow
EnableScrollBar
EnableWindow
CheckRadioButton
SetScrollPos
GetScrollPos
IsDlgButtonChecked
SetWindowPos
GetWindowDC
SetClipboardData
EmptyClipboard
SystemParametersInfoA
EndPaint
FillRect
SetRect
BeginPaint
ReleaseCapture
ScreenToClient
SetCursor
SetCapture
IsIconic
DrawTextA
GetScrollRange

gdi32

CopyMetaFileA
CreateMetaFileA
SetWindowOrgEx
SetWindowExtEx
CloseMetaFile
SetTextColor
SetBkColor
SelectObject
PatBlt
GetStockObject
TranslateCharsetInfo
CreateFontIndirectA
GetTextExtentPoint32A
DeleteObject
GetDeviceCaps
GetLayout
SetLayout
SetBkMode
SetTextAlign
TextOutA

advapi32

RegOpenKeyExW

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.textR2
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 772B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b2bc879f443713918e72526d34edb1bb

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 28KB - Virtual size: 28KB

.textR2 Size: 512B - Virtual size: 4B

.data Size: 5KB - Virtual size: 5KB

.reloc Size: 1024B - Virtual size: 772B

.text
Size: 28KB - Virtual size: 28KB

.textR2
Size: 512B - Virtual size: 4B

.data
Size: 5KB - Virtual size: 5KB

.reloc
Size: 1024B - Virtual size: 772B