3d71c9355a990c6ceec98b82d6548537_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3d71c9355a990c6ceec98b82d6548537_JaffaCakes118
Size

72KB
MD5

3d71c9355a990c6ceec98b82d6548537
SHA1

dad72bb7094ae3599465c90dc7e4ab60b3f81cc4
SHA256

9709a8d4ebc1ecda0b69c8db433c34ef971ec416087874747494ac1858df065d
SHA512

1b2de7bf0ad18883b33aefd21ecd653598a8dc073ba1f2f30f50be03d4632849a41d862be4340ace00ae9d96e9e82586d7daee5f63e4751bb4828b09023005c3
SSDEEP

1536:BDTV8r8OQ26uJiW7D9ZNc6y0Os+QIC1cPOv7h:Rg6iiWf9dbOkbuPO7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3d71c9355a990c6ceec98b82d6548537_JaffaCakes118

Files

3d71c9355a990c6ceec98b82d6548537_JaffaCakes118
.dll windows:4 windows x86 arch:x86

a54b69c19dd9b39c53d8789e4564b7d6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateMutexA
WaitForSingleObject
GetModuleHandleA
MoveFileExA
CloseHandle
lstrcatW
ReleaseMutex
EnterCriticalSection
GetModuleFileNameA
LoadLibraryA
VirtualProtect
CreateProcessA
HeapFree
LeaveCriticalSection
GetProcessHeap
GetProcAddress
HeapAlloc
lstrlenW
HeapValidate
lstrcpyW
SwitchToThread
LoadResource
SystemTimeToFileTime
GetDiskFreeSpaceExW
GetConsoleOutputCP
QueueUserAPC
SetFileApisToOEM
QueueUserWorkItem
GetUserDefaultUILanguage
FindFirstVolumeMountPointW
CreateMailslotA
SetEnvironmentVariableW
CreateSemaphoreA
SetSystemTime
GetLogicalDriveStringsW
LCMapStringA
SetInformationJobObject
FindCloseChangeNotification
GetProcessAffinityMask
SetComputerNameExW
LocalFileTimeToFileTime
LockFileEx
IsValidLocale
MultiByteToWideChar
AllocConsole
LocalFree
VirtualUnlock
LocalSize
GetVolumeInformationW
FlushViewOfFile
SetConsoleTextAttribute
DeleteTimerQueueEx
GetDiskFreeSpaceW
GetTickCount
GlobalMemoryStatusEx
UnregisterWait
WriteProcessMemory
OpenSemaphoreA
DeleteFileW
GetLocaleInfoA
GlobalGetAtomNameA
CreateRemoteThread
GetLocaleInfoW
OpenEventA
CreateNamedPipeW
LocalAlloc
WriteProfileStringA
WaitForSingleObjectEx
UnlockFileEx
GetProfileSectionA
ReleaseSemaphore
FindNextFileW
GetSystemTimeAdjustment
HeapDestroy
FreeLibraryAndExitThread
GetEnvironmentStringsW
CreateWaitableTimerA
RtlUnwind
GetTempPathW
TerminateThread
GetTapeParameters
FindNextFileA
GetSystemDefaultLangID
SearchPathW
GetBinaryTypeA
GlobalGetAtomNameW
FreeEnvironmentStringsW
GetFullPathNameW
GetCurrentThread
GetShortPathNameW
RtlMoveMemory
RegisterWaitForSingleObjectEx
UnregisterWaitEx
GetVolumePathNamesForVolumeNameW
CreateTimerQueueTimer
GetComputerNameW
FindResourceA
GetFileAttributesW
ReadConsoleInputW
ReadConsoleW
WriteConsoleA
HeapSize
ExitProcess
GetFullPathNameA
GetModuleHandleExW
VerSetConditionMask
SetVolumeLabelA
AssignProcessToJobObject
FindClose
SuspendThread
LockResource
FindVolumeClose
AddAtomW
HeapSetInformation
FindFirstVolumeW
GetSystemDefaultUILanguage
PostQueuedCompletionStatus
SetVolumeMountPointW
FillConsoleOutputAttribute
PurgeComm
GetSystemTime
WinExec
GetVersion
lstrcmpiA
DuplicateHandle
WriteFile
GetTimeFormatW
CreateDirectoryW
GlobalAlloc
SetProcessShutdownParameters
WaitNamedPipeA
GetCPInfo
LocalReAlloc
CompareFileTime
GlobalAddAtomA
FormatMessageW
CreateJobObjectW
CreatePipe
GetStringTypeExW
VirtualAlloc

user32

DispatchMessageA
GetMessageA
UnhookWindowsHookEx
LoadStringW
IsZoomed
SetDlgItemInt
OemToCharA
CharNextA
ScreenToClient
GetMenuItemInfoW
SwitchToThisWindow
GetDialogBaseUnits
SetScrollPos
GetAsyncKeyState
GetMenuItemRect
UpdateWindow
GetCapture
DestroyMenu
GetCursor
ReleaseCapture
GetScrollInfo
GetScrollBarInfo
ExitWindowsEx
SetMenuItemBitmaps
IntersectRect
ToUnicodeEx
CopyRect
CopyIcon
ShowWindow
ReleaseDC
DrawStateA
MessageBoxIndirectA
GetMenu
ModifyMenuW
EnumWindows
GetScrollRange
CharPrevW
GetClassInfoExA
SetWindowTextA
CharNextExA
CharToOemBuffA
LoadAcceleratorsA
FindWindowA
DestroyIcon
DrawTextExW
MapVirtualKeyW
LoadImageW
LoadCursorA
GetTopWindow
ShowWindowAsync
ChangeDisplaySettingsW
DrawEdge
PostThreadMessageA
CharUpperBuffA
TrackPopupMenuEx
LoadIconA
MessageBeep
DefFrameProcW
GetWindowTextLengthW
PackDDElParam
VkKeyScanA
CharLowerBuffA
LoadMenuA
GetUpdateRect
CopyAcceleratorTableA
GetGUIThreadInfo
BroadcastSystemMessageW
RemoveMenu
GetWindowLongA
MonitorFromRect
FillRect
GetPropW
CheckMenuItem
LoadIconW
OffsetRect
GetDC
VkKeyScanW
EnumDesktopsW
IsCharAlphaNumericA
GetWindowTextLengthA
SetClassLongA
UnpackDDElParam
GetClassNameW
LoadImageA
BeginDeferWindowPos
GetWindowDC
UnionRect
SetWindowLongW
RegisterHotKey
GetScrollPos
GrayStringW
DialogBoxParamW
DestroyAcceleratorTable
ReplyMessage
DialogBoxParamA
IsChild
UnregisterClassW
SetPropA
BeginPaint
UnregisterClassA
SetWindowPos
TranslateMessage
MessageBoxIndirectW
GetMenuItemID
PostMessageW
SendMessageA
GetInputState
SetMenuDefaultItem
DefFrameProcA

Exports

Exports

DllInit
DllInstall

Sections

.text
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1020B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a54b69c19dd9b39c53d8789e4564b7d6

Headers

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

.text Size: 52KB - Virtual size: 50KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 4KB - Virtual size: 1020B

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 52KB - Virtual size: 50KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 4KB - Virtual size: 1020B

.reloc
Size: 4KB - Virtual size: 2KB