41bc8fe5da860e07895075967ee65d66_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

41bc8fe5da860e07895075967ee65d66_JaffaCakes118
Size

304KB
MD5

41bc8fe5da860e07895075967ee65d66
SHA1

f82b845817080783e7a18b42396e0ffc6d3e0096
SHA256

c76bbee7f2651d1f5d3bf91c0273de9c8eec0a9c380dbc799eaf3a1857f6b82f
SHA512

d4e63789395b35da96e8e824c1c3f751b192e32f29d8abeb67dae042e1ad7ad71be3cc96f47e6a83903fe82d6a3b6acb5a6be39f97506dc84f4e856e7f8e8bbc
SSDEEP

6144:trN/354XkqG+5/2CM/HeBNZYFp7GYQ4UcIKhHT:trNCkvOiZjdIK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
41bc8fe5da860e07895075967ee65d66_JaffaCakes118

Files

41bc8fe5da860e07895075967ee65d66_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d55225fca9397520653677cb8c75c7c6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTimeFormatA
CreateToolhelp32Snapshot
GetStartupInfoW
GetCurrentProcess
LoadLibraryA
OpenMutexA
GetSystemInfo
GetUserDefaultLCID
LeaveCriticalSection
CompareStringW
HeapSize
GetConsoleCP
GetProcAddress
VirtualFree
TlsAlloc
GetVersionExA
GetLocaleInfoW
InterlockedExchange
GetModuleFileNameA
HeapReAlloc
HeapFree
MultiByteToWideChar
GetStartupInfoA
GetDateFormatA
LCMapStringA
GetFileType
GetSystemTimeAsFileTime
IsValidCodePage
GetCPInfo
GetLocaleInfoA
HeapAlloc
DeleteCriticalSection
CompareStringA
CreateMutexA
GetEnvironmentStringsW
ExitProcess
FlushFileBuffers
RtlUnwind
GetCommandLineA
FreeEnvironmentStringsW
EnumSystemLocalesA
TransmitCommChar
GetStdHandle
GetOEMCP
VirtualProtect
SetEnvironmentVariableA
GetStringTypeW
HeapCreate
GetCurrentThread
GetStringTypeA
GetCurrentProcessId
TerminateProcess
GetModuleHandleA
TlsFree
GetACP
LCMapStringW
TlsSetValue
GetLastError
SetStdHandle
CloseHandle
InitializeCriticalSection
IsBadWritePtr
SetHandleCount
GetEnvironmentStrings
HeapDestroy
FreeEnvironmentStringsA
IsValidLocale
WideCharToMultiByte
GetTickCount
UnhandledExceptionFilter
GetTimeZoneInformation
GetModuleFileNameW
GetCurrentThreadId
SetFilePointer
ReadFile
SetLastError
VirtualAlloc
QueryPerformanceCounter
GetCommandLineW
VirtualQuery
WriteFile
TlsGetValue
EnterCriticalSection

comctl32

ImageList_SetFilter
ImageList_Draw
CreateStatusWindowA
ImageList_EndDrag
ImageList_Add
CreateToolbar
ImageList_AddMasked
ImageList_AddIcon
CreateMappedBitmap
ImageList_GetImageInfo
ImageList_SetOverlayImage
ImageList_DragLeave
DrawInsert
InitCommonControlsEx
ImageList_DrawEx
ImageList_DragShowNolock
ImageList_LoadImageA
_TrackMouseEvent
ImageList_DragEnter
ImageList_GetDragImage

comdlg32

LoadAlterBitmap
PrintDlgW

user32

WindowFromDC
SetProcessDefaultLayout
IsCharAlphaA
CopyImage
MonitorFromRect
GetClipboardFormatNameA
MessageBoxA
SetScrollPos
InvalidateRect
ExcludeUpdateRgn
CharUpperW
GetWindowInfo
GetLastActivePopup
GetWindowModuleFileNameA
SetWindowsHookA
GetClipboardOwner
GetFocus
PeekMessageW
CreateWindowExW
RegisterWindowMessageA
IsDlgButtonChecked
UnregisterClassA
SetMenuItemBitmaps
ChangeDisplaySettingsExA
GetActiveWindow
CreateAcceleratorTableW
DefFrameProcW
GetClassNameA
ModifyMenuW
GetComboBoxInfo
RegisterClassExA
CreatePopupMenu
OemToCharW
DrawTextExW
DdeSetUserHandle
ShowWindow
CreateWindowStationW
RegisterClassA
GetCapture
GetNextDlgGroupItem
IsCharAlphaW
InvertRect
UnregisterHotKey
InsertMenuItemA
WinHelpW
CloseWindow
GetMessagePos
VkKeyScanExA
CharToOemW
EnumDisplayMonitors
GetWindow
GetTopWindow
InsertMenuItemW
InSendMessage
DrawMenuBar
EnumThreadWindows
EnumDisplaySettingsA
IsClipboardFormatAvailable
LoadIconA
DefWindowProcA
MessageBeep
RedrawWindow
DestroyWindow
InSendMessageEx
GetDesktopWindow
GetProcessDefaultLayout
LoadBitmapW
GetTabbedTextExtentA
CreateCaret
CharUpperBuffW
DdeCmpStringHandles

gdi32

CreateColorSpaceW
CopyEnhMetaFileA
GetCharABCWidthsA
CreateRectRgnIndirect
PolyPolygon
SetTextColor
SetDeviceGammaRamp
TextOutW
TextOutA
GetRgnBox
CheckColorsInGamut
SetDIBits
GetArcDirection
SetColorAdjustment
SetBkColor
CreateScalableFontResourceW
PlayEnhMetaFileRecord
CreateBrushIndirect
GetClipBox

shell32

DoEnvironmentSubstA
SHQueryRecycleBinW
SHBrowseForFolderW

Sections

.text
Size: 84KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 96KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d55225fca9397520653677cb8c75c7c6

Headers

File Characteristics

Imports

kernel32

comctl32

comdlg32

user32

gdi32

shell32

Sections

.text Size: 84KB - Virtual size: 82KB

.rdata Size: 96KB - Virtual size: 94KB

.data Size: 88KB - Virtual size: 109KB

.rsrc Size: 32KB - Virtual size: 30KB

.text
Size: 84KB - Virtual size: 82KB

.rdata
Size: 96KB - Virtual size: 94KB

.data
Size: 88KB - Virtual size: 109KB

.rsrc
Size: 32KB - Virtual size: 30KB