41c11736b723d81008c3bc5e3ead604b_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

41c11736b723d81008c3bc5e3ead604b_JaffaCakes118
Size

109KB
MD5

41c11736b723d81008c3bc5e3ead604b
SHA1

5f0b53d2254a464bfc79e9737807dc7ea573c036
SHA256

32d21bfe9218a8471f1f6495aa2a03dfb973cada69cce138f3ae5bf805026969
SHA512

e81beebd92be3e9a15f9c823a63cfc8d38f3cf1fc27534e9e3473b1ffb20b48e68c76d2ff471d50417f73975bda7ad36a1de4b70d9853ea0f77848366e77e6a3
SSDEEP

3072:SD3Hl5JVSa4GhR+lbTlVd3c6h2o1DNo9:y3Xok+llLQoe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
41c11736b723d81008c3bc5e3ead604b_JaffaCakes118

Files

41c11736b723d81008c3bc5e3ead604b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9afe34dba538b7c56ec58a1f72c11674

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

SysStringLen

shlwapi

SHQueryInfoKeyA
SHEnumValueA
SHSetValueA
SHStrDupA
SHQueryValueExA
PathIsDirectoryA
SHDeleteValueA
SHGetValueA
PathFileExistsA

version

VerFindFileA
GetFileVersionInfoA
VerInstallFileA

user32

IsRectEmpty
MapVirtualKeyA
GetTopWindow
GetCursorPos
SetParent
GetMenu
GetIconInfo
SetWindowPos
MsgWaitForMultipleObjects
GetScrollRange
IsDialogMessageW
GetKeyNameTextA
CallWindowProcA
GetSubMenu
TranslateMDISysAccel
SetMenu
ReleaseDC
DefWindowProcA
PtInRect
AdjustWindowRectEx
GetWindowTextA
OemToCharA
DrawMenuBar
SetScrollPos
SetForegroundWindow
GetSysColorBrush
GetWindowThreadProcessId
CreateIcon
EnumChildWindows
CreateMenu
ShowWindow
ActivateKeyboardLayout
DestroyIcon
TrackPopupMenu
DefMDIChildProcA
GetWindowDC
GetMenuItemID
CreateWindowExA
MessageBeep
InsertMenuA
GetSysColor
IsWindow
CharNextW
GetKeyboardLayoutList
DrawEdge
SetWindowLongW
GetWindowPlacement
GetMenuItemCount
DestroyWindow
DestroyCursor
DrawIcon
LoadIconA
GetDlgItem
CloseClipboard
LoadStringA
GetFocus
SetWindowPlacement
RegisterWindowMessageA
SetClassLongA
DrawAnimatedRects
CharLowerA
SetWindowTextA
GetMenuStringA
EndPaint
InflateRect
DispatchMessageW
WaitMessage
MessageBoxA
GetWindow
SetClipboardData
GetKeyState
CheckMenuItem
GetForegroundWindow
InsertMenuItemA
CharToOemA
FindWindowA
DrawIconEx
GetClassLongA
wsprintfA
EnumWindows
SendMessageA
GetCursor
PostQuitMessage
GetKeyboardType
IsChild
SetWindowLongA
GetActiveWindow
IsWindowEnabled
EnableScrollBar
PeekMessageA
InvalidateRect
GetMessagePos
ClientToScreen
SetScrollRange
DrawFrameControl
DeleteMenu
GetMenuItemInfoA
SendMessageW
GetKeyboardState
IsDialogMessageA
RemoveMenu
ReleaseCapture
LoadBitmapA
SetPropA
PeekMessageW
EnableWindow
GetKeyboardLayoutNameA
GetSystemMetrics
BeginPaint
GetWindowRect
LoadCursorA
DefFrameProcA
SetCursor
GetCapture
GetClipboardData
GetWindowLongW
EnumThreadWindows
OffsetRect
SetRect
FrameRect
ScrollWindow
SystemParametersInfoA
MapWindowPoints
SetCapture
ScreenToClient
GetScrollPos
EqualRect
CallNextHookEx
OpenClipboard
GetDC
DestroyMenu
SetScrollInfo
ShowScrollBar
SetFocus
SetActiveWindow
UnhookWindowsHookEx
SetTimer
ChildWindowFromPoint
CharUpperBuffA
GetKeyboardLayout
KillTimer
GetClassNameA
ShowOwnedPopups
MoveWindow
CreatePopupMenu
SetMenuItemInfoA
UpdateWindow
UnregisterClassA
GetClassInfoA
GetDCEx
GetScrollInfo
EmptyClipboard
IsZoomed
DrawTextA
WindowFromPoint
GetDesktopWindow
GetSystemMenu
RegisterClipboardFormatA
SetWindowsHookExA
PostMessageA
FillRect
GetLastActivePopup
RegisterClassA
GetParent
DispatchMessageA
EnableMenuItem
RemovePropA
GetPropA
IsWindowVisible
GetClientRect
GetWindowLongA
CharNextA
LoadKeyboardLayoutA
GetMenuState
IsIconic
TranslateMessage
IntersectRect

kernel32

GetOEMCP
VirtualAllocEx
EnterCriticalSection
LoadResource
GetProcAddress
lstrcpynA
GetVersionExA
GlobalAlloc
GetCommandLineA
SizeofResource
LoadLibraryA
ExitProcess
GetModuleHandleA
CloseHandle
lstrlenA

shell32

SHGetFolderPathA
SHGetSpecialFolderLocation
Shell_NotifyIconA
SHFileOperationA
SHGetDesktopFolder

gdi32

GetDIBColorTable
SelectPalette
SetPixel
GetBitmapBits
GetCurrentPositionEx
GetClipBox
SetBkMode

advapi32

RegEnumKeyExA
RegDeleteValueA
RegEnumKeyA

Sections

CODE
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 463B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9afe34dba538b7c56ec58a1f72c11674

Headers

File Characteristics

Imports

oleaut32

shlwapi

version

user32

kernel32

shell32

gdi32

advapi32

Sections

CODE Size: 31KB - Virtual size: 31KB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 69KB - Virtual size: 69KB

.edata Size: 512B - Virtual size: 463B

CODE
Size: 31KB - Virtual size: 31KB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 69KB - Virtual size: 69KB

.edata
Size: 512B - Virtual size: 463B