3c5b8f1b5fb2dc8085212ceb42c86e37_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3c5b8f1b5fb2dc8085212ceb42c86e37_JaffaCakes118
Size

324KB
MD5

3c5b8f1b5fb2dc8085212ceb42c86e37
SHA1

ac9020ed374488eae121c23da842842b44107e39
SHA256

a17ee0efec375cd9001eefc6eb6e83f4d8eba2eca95e163465b6391e2e28f087
SHA512

dde7b767694fb06b533970993bf4d12aabddf3686a9cf4f36ae8e2afc53c43e1e140e9b9d0b313cce0833c050a5b06957494c676dab93733cf1b62625cab5073
SSDEEP

6144:zvYgsnalKbePJ73SD5M44qCFKapXQ3OIHeXJ0lQ1VCsPEKi5VtUo+:zvYdalKihiyquKQXJ9HPEKPo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3c5b8f1b5fb2dc8085212ceb42c86e37_JaffaCakes118

Files

3c5b8f1b5fb2dc8085212ceb42c86e37_JaffaCakes118
.dll windows:4 windows x86 arch:x86

9e7e4dbfd85c919e29580d909a107c54

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

pncrt

??2@YAPAXI@Z
__CxxFrameHandler
atol
_ftol
toupper
_purecall
sprintf
strstr
atoi
strchr
_wtoi
printf
isdigit
_vsnprintf
fclose
fread
_strcmpi
_adjust_fdiv
??3@YAXPAX@Z
_initterm
_onexit
__dllonexit
rand
memmove
_open
_read
_close
_write
_putenv
_itoa
_strnicmp
_ismbcspace
realloc
_stricmp
free
malloc
_mbctype
strrchr
wcslen
_getcwd
_chdir
mbstowcs
wcscpy
wcstombs
_swab
strncpy
strncmp
fseek
ftell
fopen
_except_handler3

ole32

CoFreeUnusedLibraries
CoTaskMemFree
CoTaskMemAlloc
CoCreateInstance
CoUninitialize
CoInitialize

advapi32

RegCreateKeyExA
RegQueryValueExA
RegDeleteKeyA
RegSetValueExA
RegOpenKeyExA
RegCloseKey

user32

CharPrevA
CharNextA
LoadCursorA
SetCursor
wvsprintfA
CallNextHookEx
SetWindowsHookExA
UnhookWindowsHookEx
GetWindowLongA
DefWindowProcA
KillTimer
SetTimer
IsWindow
DestroyWindow
UnregisterClassA
RegisterClassA
CreateWindowExA
SetWindowLongA
FindWindowExA
SetFocus
PostMessageA
MessageBoxA
GetSystemMetrics

winmm

mmioGetInfo
mmioDescend
mmioOpenA
mmioClose

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

kernel32

FindFirstFileA
LeaveCriticalSection
FindClose
GetLastError
DisableThreadLibraryCalls
GetModuleFileNameA
GetCurrentThreadId
lstrlenA
GetVersionExA
SetErrorMode
GetFileAttributesExA
GetLocaleInfoA
DeviceIoControl
CloseHandle
CreateFileA
WaitForSingleObject
GetExitCodeProcess
CreateProcessA
MultiByteToWideChar
LoadLibraryA
GetModuleHandleA
FreeLibrary
InterlockedIncrement
GetProcAddress
InterlockedDecrement
lstrcatA
GetDriveTypeA
EnterCriticalSection
InitializeCriticalSection
DeleteCriticalSection
CreateEventA
ResetEvent
SetEvent
WaitForMultipleObjects
CreateSemaphoreA
ReleaseSemaphore
GetSystemInfo
VirtualAlloc
VirtualFree
lstrcpyA
WideCharToMultiByte
GetACP
CreateThread
SetThreadPriority
MulDiv
PulseEvent
GetVersion
ReadFile
SetFilePointer
lstrcpynA
GetLogicalDriveStringsA
OutputDebugStringA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
RMACreateInstance
SetDLLAccessPath

Sections

.text
Size: 184KB - Virtual size: 181KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9e7e4dbfd85c919e29580d909a107c54

Headers

File Characteristics

Imports

pncrt

ole32

advapi32

user32

winmm

version

kernel32

Exports

Exports

Sections

.text Size: 184KB - Virtual size: 181KB

.rdata Size: 24KB - Virtual size: 21KB

.data Size: 28KB - Virtual size: 29KB

.rsrc Size: 8KB - Virtual size: 4KB

.reloc Size: 20KB - Virtual size: 18KB

.text
Size: 184KB - Virtual size: 181KB

.rdata
Size: 24KB - Virtual size: 21KB

.data
Size: 28KB - Virtual size: 29KB

.rsrc
Size: 8KB - Virtual size: 4KB

.reloc
Size: 20KB - Virtual size: 18KB