2d74c12a60fe856a22c833ade1305e67_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

2d74c12a60fe856a22c833ade1305e67_JaffaCakes118
Size

220KB
MD5

2d74c12a60fe856a22c833ade1305e67
SHA1

a656959496dd9fd89b64b6d3f5a7e7271c093352
SHA256

0f0a8d9d9e805c1bce468b6987308fd1f529de1050b4072793c449f2a4b8fbdf
SHA512

a94787a634c85068e0c695c52953e7a592d7452700169bf270a12006c554ee5141b21531fc51d8978743a778df975284811fbd6bef4f3248cbdf96454fde6693
SSDEEP

3072:G3V4+HjBv34Gjp/rLQN0tnwbTjQhGxDOMaRkHNrLc4EZUwAK+CQFmC:2JlvI+Ly0JswKOaLZY2KeQC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2d74c12a60fe856a22c833ade1305e67_JaffaCakes118

Files

2d74c12a60fe856a22c833ade1305e67_JaffaCakes118
.dll windows:4 windows x86 arch:x86

b47e2b5bcb825be1d5eab8fe89bef1b0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetFileSize
GetNumberFormatA
GetFileTime
GetDateFormatA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetLocaleInfoA
CreateFileA
GetTimeFormatA
GlobalReAlloc
GetFullPathNameA
GetModuleFileNameA
GetModuleHandleA
CreateThread
GetTickCount
FindClose
FindNextFileA
FindFirstFileA
LoadLibraryA
FreeLibrary
GetFileAttributesA
GetPrivateProfileIntA
GetLastError
GlobalFree
IsBadCodePtr
lstrcmpiA
lstrcatA
lstrcpyA
CreateDirectoryA
SetFileAttributesA
RemoveDirectoryA
WritePrivateProfileStringA
lstrlenA
CloseHandle
DeleteCriticalSection
ReinitializeCriticalSection
InitializeCriticalSection
CreateMutexA
ReleaseMutex
EnterCriticalSection
GetProcAddress
GlobalLock
GlobalUnlock
GlobalAlloc
lstrcpynA
DeleteFileA
HeapSize
HeapCreate
HeapDestroy
LocalAlloc
LocalFree
HeapReAlloc
HeapFree
HeapAlloc
RtlMoveMemory
MoveFileA
GlobalSize
FormatMessageA
LeaveCriticalSection

user32

GetDC
DrawTextExA
InsertMenuItemA
CreatePopupMenu
ReleaseDC
DrawFrameControl
IntersectRect
DeleteMenu
SetMenuItemInfoA
TrackPopupMenu
InflateRect
LoadBitmapA
SystemParametersInfoA
DestroyMenu
CheckMenuRadioItem
GetMenuItemCount
GetMenuItemInfoA
EndPaint
DrawEdge
BeginPaint
ClientToScreen
RegisterClassExA
UnregisterClassA
CallWindowProcA
DrawFocusRect
IsRectEmpty
GetFocus
GetDlgItem
SendMessageA
EnableWindow
IsWindowEnabled
UnionRect
RedrawWindow
DestroyWindow
GetClassInfoA
RegisterClassA
CreateWindowExA
GetWindowLongA
SetWindowLongA
DefWindowProcA
CharPrevA
CharUpperA
TranslateMessage
SetWindowPos
MsgWaitForMultipleObjects
PeekMessageA
DestroyIcon
FillRect
OffsetRect
DrawTextA
SetRect
DialogBoxParamA
MessageBeep
GetParent
InsertMenuA
LoadIconA
BroadcastSystemMessage
GetKeyState
GetDesktopWindow
LoadStringA
LoadCursorA
SetCursor
wsprintfA
RegisterClipboardFormatA
GetSysColor
GetSysColorBrush
GetSystemMetrics
SetDlgItemTextA
SendDlgItemMessageA
CreateDialogParamA
ShowWindow
BeginDeferWindowPos
EndDeferWindowPos
GetWindowRect
ScreenToClient
DeferWindowPos
GetWindowTextA
EndDialog
DefDlgProcA
GetLastActivePopup
SwitchToThisWindow
WinHelpA
FindWindowA
IsWindow
PostMessageA
HideCaret
InvalidateRect
UpdateWindow
ShowCaret
DispatchMessageA
MapWindowPoints
GetClientRect
CharUpperBuffA
CharLowerA
SetFocus
SetWindowTextA
SetForegroundWindow
CheckRadioButton

gdi32

ExtTextOutA
DeleteObject
CreateSolidBrush
GetNearestColor
SetTextColor
SetBkColor
SelectObject
DeleteDC
CreateCompatibleBitmap
CreateCompatibleDC
GetPixel
GetTextMetricsA
CreateFontIndirectA
SetViewportOrgEx
SetBkMode
GetBkColor
SetTextAlign
GetStockObject
GetTextExtentPointA

advapi32

RegSetValueA
RegCloseKey
RegOpenKeyExA
RegEnumKeyA
RegOpenKeyA

comctl32

PropertySheetA
ord17
DestroyPropertySheetPage
CreatePropertySheetPageA
ord341
ImageList_AddMasked
ImageList_Create
ImageList_Destroy
ImageList_ReplaceIcon
ImageList_Draw
ImageList_GetBkColor
ImageList_GetImageRect
ord350
ord357

shell32

ord17
ord97
ord20
ord156
ord47
ord64
ord66
ord70
ord71
ord157
ord18
SHGetSpecialFolderPathA
ord16
ord172
ord155
ord119
ord102
ShellExecuteExA
SHGetFileInfoA
SHChangeNotify
DragQueryFileA

shlwapi

PathGetDriveNumberA
PathIsDirectoryA
PathFindFileNameA
PathAppendA
PathRemoveFileSpecA
PathCombineA
PathIsRootA
PathIsUNCA

Exports

Exports

Briefcase_Create
Briefcase_Intro
DllCanUnloadNow
DllGetClassObject

Sections

.text
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.instanc
Size: 4KB - Virtual size: 203B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b47e2b5bcb825be1d5eab8fe89bef1b0

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

comctl32

shell32

shlwapi

Exports

Exports

Sections

.text Size: 60KB - Virtual size: 59KB

.data Size: 4KB - Virtual size: 1KB

.idata Size: 8KB - Virtual size: 5KB

.instanc Size: 4KB - Virtual size: 203B

.rsrc Size: 80KB - Virtual size: 78KB

.reloc Size: 60KB - Virtual size: 59KB

.text
Size: 60KB - Virtual size: 59KB

.data
Size: 4KB - Virtual size: 1KB

.idata
Size: 8KB - Virtual size: 5KB

.instanc
Size: 4KB - Virtual size: 203B

.rsrc
Size: 80KB - Virtual size: 78KB

.reloc
Size: 60KB - Virtual size: 59KB