390fac3fc78913321b882b2f334637f5_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

390fac3fc78913321b882b2f334637f5_JaffaCakes118
Size

244KB
MD5

390fac3fc78913321b882b2f334637f5
SHA1

40186ef8dc4c78984aa301ef3bc86799712042df
SHA256

2f1dd9316424f2577494597f150f38f5112993fb56f2cec02a7f34206794f87b
SHA512

d0171585f84fe826f92deeb6245015410a0b9dc0318251ebabf84732c5da416988a389521cdd12bf53958c27a84aa9cebc13c4e1b62f5fe09f2862c76825c30a
SSDEEP

3072:Bn2NfPpmMoKGWZJxgVKC/XU6yxGUrnlvOUErqI9FU2b:B2hW5pv8zlvODhv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
390fac3fc78913321b882b2f334637f5_JaffaCakes118

Files

390fac3fc78913321b882b2f334637f5_JaffaCakes118
.dll windows:4 windows x86 arch:x86

9d65509dab4b9b1c64228eddac5d7b3d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

SetDlgItemTextW
SetWindowLongA
SetWindowLongW
GetWindowLongA
GetWindowLongW
FindWindowA
FindWindowW
DrawTextA
wvsprintfA
wvsprintfW
IsDialogMessageA
IsDialogMessageW
SystemParametersInfoA
SystemParametersInfoW
RegisterWindowMessageA
RegisterWindowMessageW
SetMenuItemInfoA
SetMenuItemInfoW
GetClassNameA
GetClassNameW
InsertMenuA
InsertMenuW
IsCharAlphaNumericA
IsCharAlphaNumericW
CharNextW
LoadBitmapA
LoadBitmapW
LoadCursorA
LoadCursorW
LoadIconA
LoadIconW
LoadImageA
LoadImageW
SetPropA
SetPropW
GetPropA
RemovePropA
RemovePropW
GetDlgItemTextA
SetDlgItemTextA
CallWindowProcW
CallWindowProcA
PostMessageW
PostMessageA
PostThreadMessageW
PostThreadMessageA
PeekMessageW
SetWindowsHookExA
CreateDialogIndirectParamW
CreateDialogIndirectParamA
DrawTextExW
DrawTextExA
CreateAcceleratorTableW
CreateAcceleratorTableA
TranslateAcceleratorW
TranslateAcceleratorA
GetMessageW
GetMessageA
DispatchMessageW
DispatchMessageA
DefWindowProcW
DefWindowProcA
CharLowerW
CharLowerA
CharUpperW
CharUpperA
DialogBoxParamW
DialogBoxParamA
CreateDialogParamW
CreateDialogParamA
LoadMenuW
LoadMenuA
LoadAcceleratorsW
LoadAcceleratorsA
CreateWindowExW
CreateWindowExA
RegisterClassW
RegisterClassA
RegisterClassExW
GetClassInfoW
GetClassInfoA
GetClassInfoExW
GetClassInfoExA
LoadStringW
LoadStringA
GetWindowTextLengthW
GetWindowTextLengthA
GetWindowTextW
SetWindowTextW
SendDlgItemMessageW
GetDlgItem
SendMessageW
SendMessageA
ToAsciiEx
SetWindowsHookExW
GetPropW
PeekMessageA
GetDlgItemTextW

advapi32

CheckTokenMembership
FreeSid
AllocateAndInitializeSid

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Exports

Exports

WouuYiqDo

Sections

.text
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 102B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

adata
Size: 140KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 704B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9d65509dab4b9b1c64228eddac5d7b3d

Headers

File Characteristics

Imports

user32

advapi32

version

Exports

Exports

Sections

.text Size: 32KB - Virtual size: 29KB

.data Size: 4KB - Virtual size: 102B

adata Size: 140KB - Virtual size: 138KB

.rsrc Size: 60KB - Virtual size: 57KB

.reloc Size: 4KB - Virtual size: 704B

.text
Size: 32KB - Virtual size: 29KB

.data
Size: 4KB - Virtual size: 102B

adata
Size: 140KB - Virtual size: 138KB

.rsrc
Size: 60KB - Virtual size: 57KB

.reloc
Size: 4KB - Virtual size: 704B