41ea01e4a82b35c561c9afbc6bf9c491_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

41ea01e4a82b35c561c9afbc6bf9c491_JaffaCakes118
Size

740KB
MD5

41ea01e4a82b35c561c9afbc6bf9c491
SHA1

97a0edffa8452bf5e9c806a39ac3716244cb782b
SHA256

926846c0fdb1f7c8f4eedf4c57dd412f0674be73a70ea8b5f9bd93bf4da12708
SHA512

0d328eee4e05f502ca55a094ed9fb8937e38fe341c87aafa4eedec1566825996387426c8589f82e5be2105fa90f579703982ed8b11a59ec76d30c16c5a4a8637
SSDEEP

12288:jnY2hN5KeV/CpZdXKLm2stKugffIp7CTeZ0naC04qybUKqD:TY275V/CR6L5hf27meynz0XKqD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
41ea01e4a82b35c561c9afbc6bf9c491_JaffaCakes118

Files

41ea01e4a82b35c561c9afbc6bf9c491_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2a25e1cb83e1c04bb301ca86fc2449c9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDateFormatA
GetStdHandle
EnterCriticalSection
IsDebuggerPresent
GetOEMCP
GetStringTypeW
VirtualQuery
SetEnvironmentVariableA
GetConsoleCP
HeapSize
GetCurrentThread
TlsGetValue
TlsAlloc
RtlUnwind
Sleep
WriteConsoleA
SetConsoleCtrlHandler
GetLocaleInfoW
GetUserDefaultLCID
CompareStringA
FlushFileBuffers
GetCurrentProcessId
GetProcAddress
SetHandleCount
CreateFileA
SetStdHandle
VirtualFree
VirtualAlloc
WriteConsoleW
GetTimeFormatA
FreeLibrary
LeaveCriticalSection
GetVersionExA
GetEnvironmentStringsW
TlsFree
GetCurrentThreadId
DeleteCriticalSection
InterlockedDecrement
SetUnhandledExceptionFilter
InterlockedExchange
SetLastError
LCMapStringW
FreeEnvironmentStringsA
ReadFile
GetLastError
GetStartupInfoA
CloseHandle
GetTickCount
UnhandledExceptionFilter
ExitProcess
CreateMutexW
GetConsoleMode
GetModuleHandleW
SetFilePointer
WideCharToMultiByte
GetFileType
GetSystemTimeAsFileTime
LCMapStringA
IsValidCodePage
GetConsoleOutputCP
HeapCreate
TerminateProcess
GetStartupInfoW
LoadLibraryA
TlsSetValue
GetStringTypeA
QueryPerformanceCounter
WriteFile
MultiByteToWideChar
IsValidLocale
GetModuleFileNameA
HeapReAlloc
GetProcessHeap
GetCPInfo
HeapAlloc
GetCommandLineA
GetEnvironmentStrings
CompareStringW
GetModuleHandleA
GetCurrentProcess
GetACP
GetLocaleInfoA
FatalAppExitA
GetCommandLineW
InterlockedIncrement
HeapDestroy
GetModuleFileNameW
InitializeCriticalSection
HeapFree
GetTimeZoneInformation
FreeEnvironmentStringsW

shell32

Shell_NotifyIconA
SHGetPathFromIDListA
ShellExecuteA
ord155

ole32

OleGetIconOfClass
OleUninitialize
OleSetMenuDescriptor
OleCreateLinkFromData
OleRegGetMiscStatus
OleFlushClipboard
WriteClassStg
OleCreate
OleSaveToStream
OleCreateFromFile
OleCreateLinkToFile
CreateGenericComposite
OleSave
CoTaskMemAlloc
CreateFileMoniker
OleRegEnumVerbs
CreateBindCtx
OleSetContainedObject
OleIsCurrentClipboard

oleaut32

LoadTypeLi

user32

GetNextDlgTabItem
DestroyCursor
PeekMessageW
SetScrollPos
CallWindowProcW
EndDialog
GetDCEx
UnregisterHotKey
IsWindowEnabled
ClientToScreen
UnregisterClassW
BringWindowToTop
GetSubMenu
EnableWindow
GetWindowRect
GetFocus
DestroyWindow
RegisterHotKey
RedrawWindow
RegisterClassW
UpdateWindow
IsIconic
SetWindowLongW
GetWindowDC
ReleaseDC
GetParent
ShowWindow
GetScrollInfo
WindowFromPoint
EnableMenuItem
ScrollWindow
SetCapture
CheckMenuItem
FillRect
GetLastActivePopup
ScreenToClient
RemoveMenu
MessageBoxW
DispatchMessageW
OpenClipboard
ShowOwnedPopups
CloseClipboard
PostQuitMessage
GetSysColorBrush
CopyRect
GetDesktopWindow
SetWindowPos
EnumClipboardFormats
SetScrollInfo
CreateWindowExW
GetSystemMenu
TrackPopupMenu
InvalidateRect
GetDC
SetCursor
GetIconInfo
SetTimer
GetWindowTextLengthW
DrawFocusRect
GetWindow
GetMenuState
GetKeyState
DefWindowProcW
RegisterClassExW
DrawEdge
SetClipboardData
GetSysColor
CreatePopupMenu
CreateWindowExA
GetMenuItemCount
MapWindowPoints
SetWindowLongA
DestroyIcon
MoveWindow
EnumWindows
MapDialogRect
GetClassInfoW
ScrollWindowEx

advapi32

OpenThreadToken
OpenProcessToken
IsValidSecurityDescriptor
DuplicateToken
AccessCheck
RegDeleteKeyA
RegOpenKeyExA

gdi32

FillPath
GdiComment
GetColorAdjustment
SetTextColor
GetTextFaceA
SetStretchBltMode
CreateEnhMetaFileA
DeleteMetaFile
GetDeviceCaps
CreateMetaFileA
GetCharABCWidthsFloatA
CreatePolyPolygonRgn
SetPixel
GetBkColor
OffsetWindowOrgEx
SelectPalette
SaveDC
WidenPath
LPtoDP
GetBrushOrgEx
EnumObjects
DeleteObject
SetTextJustification
CreatePolygonRgn
EndPath
CreateCompatibleDC
SetMiterLimit
GetTextExtentPoint32A
CreateEllipticRgn
GetBoundsRect
GetBkMode
DeleteDC
GetStockObject
SetPolyFillMode
GetTextCharacterExtra
GetBitmapBits
PlayMetaFile
GetTextExtentPointA
ExtCreatePen
SetBoundsRect
CreateDiscardableBitmap
SetBrushOrgEx
TextOutA
GetMiterLimit
OffsetViewportOrgEx
FrameRgn
CreateCompatibleBitmap
SetWindowExtEx
RestoreDC
Polyline
GetTextColor
ExtEscape
CreateSolidBrush
SetWindowOrgEx
Escape
SetViewportExtEx
GetStretchBltMode
SetBkColor
GetKerningPairsA
GetClipRgn
MaskBlt
SelectClipPath
CloseEnhMetaFile
GetDCOrgEx
GetWindowExtEx
SetRectRgn
GetCharWidthA
CreateFontIndirectA
CreateRoundRectRgn
CreatePalette
OffsetClipRgn
SetAbortProc
CreateRectRgn
CreatePatternBrush
SetViewportOrgEx
PathToRegion
GetObjectA
GetRgnBox
BeginPath
Rectangle
CreateHatchBrush
GetPolyFillMode
StartPage
UnrealizeObject
SetPaletteEntries
AbortPath
CreateBitmap
DPtoLP
RoundRect
SetTextAlign
GetAspectRatioFilterEx
GetNearestColor
LineTo
PatBlt
AngleArc
DrawEscape
GetTextMetricsA
CreateBitmapIndirect
Arc
BitBlt
GetCharWidthFloatA
CloseMetaFile
PolyBezierTo
EqualRgn
GetClipBox
AnimatePalette
RectVisible
EndPage
GetPixel
CreateDCA
CreateFontA
EndDoc
StrokeAndFillPath
PlgBlt

winspool.drv

AddPrinterDriverA
GetPrinterA
EnumJobsA
ord204
ClosePrinter
GetPrinterDriverDirectoryA
EnumPrinterDriversA
DeviceCapabilitiesA
AddPrinterA
DocumentPropertiesA
OpenPrinterA
EnumPrintersA

Sections

.text
Size: 100KB - Virtual size: 97KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 460KB - Virtual size: 458KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2a25e1cb83e1c04bb301ca86fc2449c9

Headers

File Characteristics

Imports

kernel32

shell32

ole32

oleaut32

user32

advapi32

gdi32

winspool.drv

Sections

.text Size: 100KB - Virtual size: 97KB

.rdata Size: 460KB - Virtual size: 458KB

.data Size: 100KB - Virtual size: 106KB

.rsrc Size: 76KB - Virtual size: 73KB

.text
Size: 100KB - Virtual size: 97KB

.rdata
Size: 460KB - Virtual size: 458KB

.data
Size: 100KB - Virtual size: 106KB

.rsrc
Size: 76KB - Virtual size: 73KB