465f11e39af475675b890ff78d28524e_JaffaCakes118

General

Target

465f11e39af475675b890ff78d28524e_JaffaCakes118
Size

57KB
MD5

465f11e39af475675b890ff78d28524e
SHA1

99fd9fad06c404b830da3c87fe27f3b1599e367b
SHA256

b3a77914b9b8fdf95afaadcb1edc835aee8be77f3890d891e3759d60bb68dd62
SHA512

3b2c4a6460942b4af9c5882c0be8bec52d3ba911ddb1b2106782c4ef7bc743d7ed8531477f4c13ce673aa5e4350d29703fbd5628971e14c9c85e30dd549c48ca
SSDEEP

1536:7caIVuTi0K6LkRDvl9PCsxUS349Lv/gfYnvxEu:7cnVei0/SDt9vej/g2vxEu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
465f11e39af475675b890ff78d28524e_JaffaCakes118

Files

465f11e39af475675b890ff78d28524e_JaffaCakes118
.dll windows:4 windows x86 arch:x86

93a060c497e86a138895b0939f655839

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

LoadMenuA
GetDlgCtrlID
CreateIconIndirect

kernel32

TerminateProcess
lstrlenW
lstrcatA
CloseHandle
DeleteCriticalSection
DisableThreadLibraryCalls
EnterCriticalSection
ExitProcess
FindClose
FreeEnvironmentStringsW
GetCommandLineA
GetCurrentThread
GetFileTime
GetModuleHandleA
GetProcessWorkingSetSize
GetStartupInfoA
GetSystemInfo
GetVersionExA
GlobalAlloc
HeapAlloc
HeapCreate
HeapReAlloc
InterlockedIncrement
IsValidCodePage
MultiByteToWideChar
RtlUnwind
SetLastError
UnmapViewOfFile
TlsSetValue

setupapi

SetupGetStringFieldA
SetupEnumInfSectionsW
SetupDiGetClassDevsA

olepro32

OleIconToCursor

oleacc

GetStateTextA
WindowFromAccessibleObject
CreateStdAccessibleProxyW
GetRoleTextW
AccessibleObjectFromPoint
CreateStdAccessibleProxyA

advapi32

GetMultipleTrusteeW
GetFileSecurityA
MakeAbsoluteSD2
RegDisablePredefinedCache

security

QueryCredentialsAttributesW
QueryContextAttributesW
EnumerateSecurityPackagesW
DeleteSecurityPackageW

Sections

.text
Size: 45KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

93a060c497e86a138895b0939f655839

Headers

File Characteristics

Imports

user32

kernel32

setupapi

olepro32

oleacc

advapi32

security

Sections

.text Size: 45KB - Virtual size: 48KB

.data Size: 9KB - Virtual size: 12KB

.rsrc Size: 1KB - Virtual size: 4KB

.reloc Size: 1024B - Virtual size: 4KB

.text
Size: 45KB - Virtual size: 48KB

.data
Size: 9KB - Virtual size: 12KB

.rsrc
Size: 1KB - Virtual size: 4KB

.reloc
Size: 1024B - Virtual size: 4KB