300e6e7d46a113d8d5f1a3c2141a7a93_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

300e6e7d46a113d8d5f1a3c2141a7a93_JaffaCakes118
Size

169KB
MD5

300e6e7d46a113d8d5f1a3c2141a7a93
SHA1

761b4d26eb3139e89e3cb474c782c096cce5d48f
SHA256

d46fbb577a9391ddc90ac993b6e103d18267d08ffa33822769d31b94a7ca600a
SHA512

5ae0163d772187d67cf421dd01f4221ca42a814c5631e9862b6645ad895c750484b45f629c4eea8a2567522acf836a994cfdd650b0de705f094f10d6e850d659
SSDEEP

3072:IY6k0lh9gCQ62Vo21043J9ZoHmjuCVm6NAMlvEZp7Hse1A:j0L9gCQ62Vo210459esuCf9lcXHpq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
300e6e7d46a113d8d5f1a3c2141a7a93_JaffaCakes118

Files

300e6e7d46a113d8d5f1a3c2141a7a93_JaffaCakes118
.dll windows:4 windows x86 arch:x86

8c522a8751eaeefa6ccc27e21cfac265

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

GetKeyboardLayoutNameA
GetDesktopWindow
SetWindowLongA
WindowFromPoint
RegisterClassA
MoveWindow
SetParent
EnumChildWindows
GetDlgItem
GetMenu
GetScrollRange
GetWindowPlacement
GetScrollInfo
GetSysColorBrush
GetCursorPos
ReleaseCapture
SetWindowPos
GetMenuItemInfoA
GetActiveWindow
CharLowerBuffA
IsWindow
DrawFrameControl
CharNextA
OffsetRect
MapVirtualKeyA
LoadIconA
ClientToScreen
DrawIcon
PeekMessageW
RegisterWindowMessageA
SetCapture
GetKeyboardLayout
GetKeyboardType
UnregisterClassA
UpdateWindow
InsertMenuItemA
SetFocus
DestroyMenu
GetMenuItemID
GetPropA
GetClassInfoA
DestroyIcon
SetScrollInfo
OpenIcon
GetWindowDC
DrawAnimatedRects
GetTopWindow
DefMDIChildProcA
GetWindowLongW
SetWindowsHookExA
GetForegroundWindow
SystemParametersInfoA
GetWindow
PostQuitMessage
EnableMenuItem
GetKeyNameTextA
GetSystemMenu
GetLastActivePopup
CallWindowProcA
InvalidateRect
GetKeyboardLayoutList

kernel32

VirtualFree
VirtualAlloc
LoadLibraryA
WriteFile
lstrcpyA
WideCharToMultiByte
VirtualQuery
WaitForSingleObject

Exports

Exports

fXT_wzb@4
scrx09Vs1mUdN
_dCo8osTh@24
XNe_QGUUImYD@24
ZJ_P6bo4LxV8
_S5HOXaHLK@24

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 150KB - Virtual size: 333KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.data
.rdata
.reloc
.rsrc/0/DIALOG/TEXTFILEDLG
.rsrc/0/MANIFEST/1
.xml
.rsrc/0/RCDATA/DVCLAL
.rsrc/0/STRING/4094
.rsrc/0/STRING/4095
.rsrc/1033/BITMAP/BBABORT.bmp
.rsrc/1033/version.txt
.text

Sharing

General

Malware Config

Signatures

Files

8c522a8751eaeefa6ccc27e21cfac265

Headers

File Characteristics

Imports

user32

kernel32

Exports

Exports

Sections

.text Size: 9KB - Virtual size: 8KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 150KB - Virtual size: 333KB

.rsrc Size: 5KB - Virtual size: 4KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 9KB - Virtual size: 8KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 150KB - Virtual size: 333KB

.rsrc
Size: 5KB - Virtual size: 4KB

.reloc
Size: 1KB - Virtual size: 1KB