826e1a1a56d6c04a22a9b1af9c6a8fb0_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

826e1a1a56d6c04a22a9b1af9c6a8fb0_JaffaCakes118
Size

370KB
MD5

826e1a1a56d6c04a22a9b1af9c6a8fb0
SHA1

7a6803f63bb38e0237f98c43408a4eac629d699e
SHA256

1e6a2d20481428b638a8810004074486609c684bf9143d189b0da0a01eab14d0
SHA512

82c7e004a4f87ff59d6e14d4bfc8f4458dc4e0bbedfa30a6ed20b83db01a021d0d7b47b3a5a7b28f83529114ebaff37a433e295e92d8dc3dea9f3c3977c459f5
SSDEEP

6144:LPZ/Kwe42rbdquruJmRHkCxaXEErs6R2TZAvOPajAdoF9UHAftmX9zh61Z+fwh6w:bZy5xrbdquruJmRHksaUE46CZAvwa0SH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
826e1a1a56d6c04a22a9b1af9c6a8fb0_JaffaCakes118

Files

826e1a1a56d6c04a22a9b1af9c6a8fb0_JaffaCakes118
.dll windows:4 windows x86 arch:x86

d986fdfbeae7d61c50445801e9beed52

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

GetDeviceCaps
GetFontAssocStatus
Rectangle
RestoreDC
GetDIBColorTable
SetWindowExtEx
SetWindowOrgEx
StretchBlt
TextOutA
FixBrushOrgEx
DeleteMetaFile
CreateRectRgnIndirect
CreateMetaFileA
CreateCompatibleDC
SaveDC
CloseMetaFile

advapi32

RegOpenKeyExA
RegEnumKeyExA
RegDeleteKeyA
RegCreateKeyExA
RegCloseKey
RegSetValueExA

ole32

WriteClassStm
OleSaveToStream
OleRegGetUserType
OleRegGetMiscStatus
OleRegEnumVerbs
OleNoteObjectVisible
OleLoadFromStream
CreateOleAdviseHolder
CreateDataAdviseHolder
CoTaskMemAlloc
CoImpersonateClient
CoCreateInstanceEx
CoCreateInstance

oleaut32

UnRegisterTypeLi
LoadTypeLi
OleCreatePropertyFrame
RegisterTypeLi
SafeArrayAccessData
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetVartype
SafeArrayUnaccessData
SysAllocString
SysAllocStringByteLen
SysAllocStringLen
SysFreeString
SysStringByteLen
SysStringLen
VarUI4FromStr
VariantChangeType
VariantClear
VariantInit
LoadRegTypeLi

user32

EndPaint
DrawIcon
GetClassInfoExA
CharNextA
BeginPaint
GetClientRect
GetFocus
GetKeyState
GetParent
GetWindowLongA
InvalidateRect
IsChild
IsGUIThread
IsWindow
PtInRect
RegisterClassExA
ReleaseDC
SetFocus
SetWindowLongA
SetWindowPos
SetWindowRgn
ShowWindow
SwitchToThisWindow
UnionRect
CreateWindowExA
OffsetRect

kernel32

lstrlenW
lstrlenA
lstrcmpiA
WriteFile
WideCharToMultiByte
VirtualQuery
VirtualProtect
VirtualFree
VirtualAlloc
TerminateProcess
Sleep
SizeofResource
SetLastError
SetHandleCount
RtlUnwind
RaiseException
QueryPerformanceCounter
MultiByteToWideChar
MulDiv
LoadResource
LeaveCriticalSection
LCMapStringW
LCMapStringA
IsValidCodePage
IsProcessorFeaturePresent
IsDebuggerPresent
IsDBCSLeadByte
InterlockedIncrement
InterlockedExchange
InterlockedDecrement
InterlockedCompareExchange
InitializeCriticalSection
HeapSize
HeapReAlloc
HeapFree
HeapDestroy
HeapCreate
GlobalUnlock
GlobalLock
GlobalAlloc
GetVersionExA
GetTickCount
GetThreadLocale
GetSystemTimeAsFileTime
GetSystemInfo
GetStartupInfoA
GetProcessPriorityBoost
GetProcAddress
GetModuleHandleA
GetLastError
GetCurrentProcessId
GetCommandLineA
GetCPInfo
GetACP
FreeLibrary
FreeEnvironmentStringsW
FreeEnvironmentStringsA
FlushInstructionCache
FindResourceA
ExitProcess
EnterCriticalSection
DisableThreadLibraryCalls

Exports

Exports

InPlaceAnd
Malloc
NameDontError
mem_level
read_image
vGetFileA

Sections

.text
Size: 151KB - Virtual size: 150KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 79KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d986fdfbeae7d61c50445801e9beed52

Headers

File Characteristics

Imports

gdi32

advapi32

ole32

oleaut32

user32

kernel32

Exports

Exports

Sections

.text Size: 151KB - Virtual size: 150KB

.rdata Size: 63KB - Virtual size: 62KB

.data Size: 65KB - Virtual size: 65KB

.rsrc Size: 79KB - Virtual size: 78KB

.reloc Size: 10KB - Virtual size: 10KB

.text
Size: 151KB - Virtual size: 150KB

.rdata
Size: 63KB - Virtual size: 62KB

.data
Size: 65KB - Virtual size: 65KB

.rsrc
Size: 79KB - Virtual size: 78KB

.reloc
Size: 10KB - Virtual size: 10KB