3d6223b82d71bb82ecf22f8754a11bf0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3d6223b82d71bb82ecf22f8754a11bf0_JaffaCakes118
Size

112KB
MD5

3d6223b82d71bb82ecf22f8754a11bf0
SHA1

d1c72cbeb7d692f77adc7dbf8b88a9cd4f943221
SHA256

887af7d1c824b9d5574f320195532695cab0be7bac27dea726fa177316ab6e26
SHA512

06caab5a395c4718638ec11c4a8b8ed474aa13fc6a9ec5fe66fa6ac11bd6d8e0fe31f5c4ce2dd9639ffe1d212d1340df81cc3b1dbc1874ba76b9bf82104e0875
SSDEEP

3072:rmIBVB882UI9dfmy9u9CqWqWqTlAXEkoeY03A6:iWSzluCqW4Tg7qw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3d6223b82d71bb82ecf22f8754a11bf0_JaffaCakes118

Files

3d6223b82d71bb82ecf22f8754a11bf0_JaffaCakes118
.dll windows:4 windows x86 arch:x86

2f56a2a920ba8fbc6a6947536cfd33a5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

ole32

CoGetClassObject

shlwapi

StrChrNW
SHRegSetUSValueW
PathBuildRootW
PathIsURLA

user32

ReleaseDC
PtInRect
TranslateMDISysAccel
SetWindowPos
SetForegroundWindow
EnableScrollBar

gdi32

GetBoundsRect

kernel32

FreeConsole
HeapUnlock
LocalAlloc
SetTapeParameters
GetComputerNameA
GetConsoleWindow
GetStartupInfoW
VirtualAlloc
FindFirstChangeNotificationA
ReadConsoleOutputCharacterW
HeapCreate
GetLogicalDriveStringsA
CompareStringA
CancelDeviceWakeupRequest
GetWindowsDirectoryW
SetHandleCount
GetNamedPipeHandleStateW
DefineDosDeviceW
LoadLibraryExW
EnterCriticalSection
GetCommMask
WritePrivateProfileSectionW
GetWindowsDirectoryW
DeleteTimerQueue
MapViewOfFile
SetFileApisToOEM
DnsHostnameToComputerNameW
GetSystemDirectoryA
HeapValidate
MoveFileWithProgressW
GetFileType
TlsGetValue
GetLastError
FlushConsoleInputBuffer
CompareFileTime
lstrcpyA
AreFileApisANSI

Exports

Exports

CommandAlertFramework
CommandCGIOpacity
CommandTask

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 72KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2f56a2a920ba8fbc6a6947536cfd33a5

Headers

File Characteristics

Imports

ole32

shlwapi

user32

gdi32

kernel32

Exports

Exports

Sections

.text Size: 16KB - Virtual size: 15KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 4KB

.edata Size: 8KB - Virtual size: 5KB

.CRT Size: 72KB - Virtual size: 69KB

.reloc Size: 4KB - Virtual size: 80KB

.text
Size: 16KB - Virtual size: 15KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 4KB

.edata
Size: 8KB - Virtual size: 5KB

.CRT
Size: 72KB - Virtual size: 69KB

.reloc
Size: 4KB - Virtual size: 80KB