3fb515c184ad1bbdebf5ddf172e3c058_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

3fb515c184ad1bbdebf5ddf172e3c058_JaffaCakes118
Size

64KB
MD5

3fb515c184ad1bbdebf5ddf172e3c058
SHA1

aaf7c063ca76dc66dba0024a896325c7e7055cc1
SHA256

f5739ed87c5d8312b2c6d5455a3940067155aaf555c3b5c8271444a71688163b
SHA512

0d036a194a139c33b031c10318a3d0b5b2166088dabdee22f8616a89536a869d8b5a03be62accefd45d87f339dcfcee83b6d8f8533ba7a24a8cde8980fb86423
SSDEEP

768:ntqIT/brDb+F+vrNC+NA1bj0KMZDuRM9cuPkHZv6rS/qE1qv1d:ns0rDyorNrNPKkV9czBlq4q9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3fb515c184ad1bbdebf5ddf172e3c058_JaffaCakes118

Files

3fb515c184ad1bbdebf5ddf172e3c058_JaffaCakes118
.dll windows:4 windows x86 arch:x86

b645da4bbe07868aa756e2e2f56c1605

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetComputerNameA
LoadLibraryA
CopyFileA
CreateThread
VirtualProtect
ReleaseMutex
WaitForSingleObject
GetProcessHeap
lstrlenA
GetProcAddress
GetModuleHandleA
CreateProcessA
lstrlenW
CreateDirectoryA
UnmapViewOfFile
GetModuleFileNameA
MapViewOfFile
lstrcpyW
VirtualQuery
MoveFileExA
lstrcatW
InitializeCriticalSection
GetSystemTimeAsFileTime
CreateFileMappingA
EnterCriticalSection
LocalFileTimeToFileTime
WaitForSingleObjectEx
FlushFileBuffers
SwitchToThread
ConnectNamedPipe
GlobalDeleteAtom
GetDateFormatA
GetSystemPowerStatus
LocalLock
GetAtomNameA
SleepEx
GetFileAttributesExA
WaitNamedPipeA
TryEnterCriticalSection
HeapSetInformation
VirtualFree
QueueUserWorkItem
GetBinaryTypeW
FindClose
lstrcpynW
CreateTimerQueueTimer
LocalFlags
GetThreadTimes
SetConsoleActiveScreenBuffer
CreateToolhelp32Snapshot
SetErrorMode
GetVolumePathNamesForVolumeNameW
GlobalGetAtomNameW
GetCurrentDirectoryA
AllocConsole
MoveFileA
GetThreadLocale
GetTimeFormatA
UpdateResourceA
QueryPerformanceFrequency
IsValidCodePage
FreeEnvironmentStringsW
LoadResource
VirtualAllocEx
OpenMutexW
GetSystemInfo
FindFirstFileExW
SetEnvironmentVariableW
GetFileAttributesExW
IsProcessorFeaturePresent
GetWindowsDirectoryW
GetUserDefaultLCID

ole32

CoTaskMemFree
CoTaskMemAlloc
CreateDataAdviseHolder
CreateOleAdviseHolder
StgIsStorageFile
ReadFmtUserTypeStg
CoCreateInstanceEx
OleLoadFromStream
MkParseDisplayName
CoLockObjectExternal
OleSetMenuDescriptor
CoGetMarshalSizeMax
StringFromGUID2
OleUninitialize

Exports

Exports

DllInit
DllInstall

Sections

.text
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1016B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b645da4bbe07868aa756e2e2f56c1605

Headers

File Characteristics

Imports

kernel32

ole32

Exports

Exports

Sections

.text Size: 48KB - Virtual size: 44KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 1016B

.reloc Size: 4KB - Virtual size: 1KB

.text
Size: 48KB - Virtual size: 44KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 1016B

.reloc
Size: 4KB - Virtual size: 1KB