3e7f60c9b7e3718b9496a2d395f80526_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3e7f60c9b7e3718b9496a2d395f80526_JaffaCakes118
Size

204KB
MD5

3e7f60c9b7e3718b9496a2d395f80526
SHA1

d210eb13cb13ea8726422cfe47027f1c40b9f47d
SHA256

7f03138bd01bdad4ae8a0203cc89d7c24ac8ab92e0d69a6039a6286d9008785b
SHA512

7778efd568897d16e92eb57516ba491f6815404095eda629f65c91e855d3d81f96d08bc8c755d9ef54db97f03ea798b0a4a9037c5dfe98fc3c8904c8b658b8ee
SSDEEP

3072:YFtd7h3KIm6lzxxiCVKUGN247mYBVc/iDoAEOfztM1he+s9ttk+z:Yni8BYYEIhYrz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3e7f60c9b7e3718b9496a2d395f80526_JaffaCakes118

Files

3e7f60c9b7e3718b9496a2d395f80526_JaffaCakes118
.dll windows:4 windows x86 arch:x86

13133a1850e13bec7d32691834d23b8b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalUnlock
GlobalLock
GlobalSize
GetLastError
GlobalAlloc
FreeLibrary
LoadLibraryW
lstrcatW
GetSystemDirectoryW
GetProcAddress
CloseHandle
SetLastError
CreateFileA
WriteFile
IsBadReadPtr
LocalFree
FormatMessageW
IsValidCodePage
GetOEMCP
WideCharToMultiByte
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetConsoleMode
GetConsoleCP
SetFilePointer
LoadLibraryA
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
lstrlenA
OutputDebugStringW
lstrlenW
DebugBreak
InterlockedIncrement
MultiByteToWideChar
FindFirstFileW
FindClose
InterlockedDecrement
FlushFileBuffers
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
SetHandleCount
HeapSize
Sleep
GetModuleFileNameA
GetStdHandle
ExitProcess
VirtualAlloc
GetACP
GetCPInfo
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleHandleA
HeapReAlloc
GetCommandLineA
GetCurrentThreadId
IsDebuggerPresent
VirtualFree
HeapCreate
RaiseException
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
GetVersionExA
HeapFree
GetProcessHeap
RtlUnwind
HeapAlloc
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
HeapDestroy

user32

LoadStringW
wvsprintfW
UnregisterClassA
CharNextW
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
RegisterClipboardFormatW
GetClipboardData
GetClipboardFormatNameW
EnumClipboardFormats
IsWindow
SendMessageW
FindWindowW
MessageBoxW
GetParent
GetActiveWindow
RedrawWindow
ScreenToClient
EnumWindows
GetClassNameW
FindWindowExW
SetRect
CopyRect
PostMessageW
RegisterClassExW
KillTimer
SetTimer
PostQuitMessage
DefWindowProcW
CreateWindowExW

gdi32

CreateBitmap
CopyEnhMetaFileW
DeleteObject
DeleteEnhMetaFile
CreateCompatibleDC
GetObjectW
SelectObject
BitBlt
DeleteDC

ole32

OleSetContainedObject
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoCreateInstance
CoInitializeEx
OleRun
CoInitialize
CoUninitialize

oleaut32

VariantClear
VariantChangeType
SysStringByteLen
SysAllocStringByteLen
SysAllocString
SysFreeString
GetErrorInfo
VariantInit

oleacc

AccessibleChildren
AccessibleObjectFromWindow

urlmon

URLDownloadToCacheFileW

Exports

Exports

CreateTextServices
IID_IRichEditOle
IID_IRichEditOleCallback
IID_ITextHost
IID_ITextHost2
IID_ITextServices
REExtendedRegisterClass
RichEdit10ANSIWndProc
RichEditANSIWndProc

Sections

.text
Size: 132KB - Virtual size: 128KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Shared
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 952B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

13133a1850e13bec7d32691834d23b8b

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ole32

oleaut32

oleacc

urlmon

Exports

Exports

Sections

.text Size: 132KB - Virtual size: 128KB

.rdata Size: 28KB - Virtual size: 24KB

.data Size: 8KB - Virtual size: 41KB

Shared Size: 16KB - Virtual size: 12KB

.rsrc Size: 4KB - Virtual size: 952B

.reloc Size: 12KB - Virtual size: 11KB

.text
Size: 132KB - Virtual size: 128KB

.rdata
Size: 28KB - Virtual size: 24KB

.data
Size: 8KB - Virtual size: 41KB

Shared
Size: 16KB - Virtual size: 12KB

.rsrc
Size: 4KB - Virtual size: 952B

.reloc
Size: 12KB - Virtual size: 11KB