941d7f89fd7ecbe0632583e76b2cf516_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

941d7f89fd7ecbe0632583e76b2cf516_JaffaCakes118
Size

1.2MB
MD5

941d7f89fd7ecbe0632583e76b2cf516
SHA1

4dcfed1ef4ba906912171bebea15394b46e7c2b3
SHA256

9331f9215b5f3fdccfb207955a015c78856c9fc1b11eb84bb28ab23927a98d77
SHA512

1de2748661c0b3841be1199241a576c66d23036c495b6a9a76566db054fd66ba0cd8d47ece395f6caa80ec624ced376a33fb0d8c36a9965c0316fdcc89942c25
SSDEEP

24576:0iYOLqksPAHbTCGlG6/1Guqq9uGcPYfSJIv3V1O5F9:0iskNPCIG6tGScPYaCdw5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
941d7f89fd7ecbe0632583e76b2cf516_JaffaCakes118

Files

941d7f89fd7ecbe0632583e76b2cf516_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f8d03bccc5c17817db36c80fdbdfd7c5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DialogBoxParamA
GetMenu
GetDC
LoadCursorA
AppendMenuW
AppendMenuA
EndDialog
DrawTextW
GetCursor
CopyIcon
BlockInput
IsMenu
AlignRects
CalcMenuBar
GetWindowTextLengthA
CopyImage
GetDlgItem
DrawIcon
CopyRect
GetWindowTextA
CloseWindow
IsWindow
DrawTextA
CreateIcon

kernel32

CopyFileExW
OpenFile
OpenFileMappingA
GetFileSize
GlobalFree
Sleep
CreateThread
ReadConsoleA
DeleteFileA
GetConsoleMode
GetComputerNameA
GetFileTime
DeleteFileW
GetStdHandle
CopyFileExA
CopyFileA
GetCommandLineA
GetLastError
ExitThread
CreateProcessA
FindAtomA
CreateDirectoryA

advapi32

RegDeleteValueW
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
RegCreateKeyW
RegDeleteValueA
RegQueryInfoKeyA
RegOpenKeyW
RegReplaceKeyW
RegDeleteKeyW
RegLoadKeyA
RegEnumKeyA
RegFlushKey
RegQueryValueW
RegQueryValueExW
RegOpenKeyExW
RegEnumValueW
RegGetKeySecurity
RegCreateKeyExW
RegEnumKeyExA
RegQueryValueA
RegReplaceKeyA
RegEnumValueA

comctl32

ImageList_LoadImageA
ImageList_Create
ImageList_DrawIndirect
ImageList_BeginDrag
ImageList_Replace
ImageList_Read
InitCommonControls
ImageList_GetIcon
ImageList_GetImageRect
ImageList_Remove
ImageList_DragLeave
ImageList_LoadImageW
ImageList_LoadImage
ImageList_DragEnter
ImageList_DragShowNolock
ImageList_Draw
ImageList_GetImageInfo
ImageList_Copy
ImageList_DragMove
ImageList_GetImageCount
ImageList_EndDrag
ImageList_GetIconSize

shell32

SHUpdateImageA
DragQueryPoint
DragQueryFileAorW
SHDefExtractIconA
ShellAboutA
ExtractIconA
PathGetShortPath
DllGetVersion
ExtractIconResInfoA
SHDefExtractIconW
DragQueryFile
RestartDialog
FreeIconList
DragFinish
DragAcceptFiles
CheckEscapesA
ExtractIconResInfoW
SHChangeNotifyRegister
CommandLineToArgvW
SHFindFiles
ExtractIconExA
SHDoDragDrop

Sections

.text
Size: 134KB - Virtual size: 133KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.0MB - Virtual size: 6.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 295B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 795B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f8d03bccc5c17817db36c80fdbdfd7c5

Headers

File Characteristics

Imports

user32

kernel32

advapi32

comctl32

shell32

Sections

.text Size: 134KB - Virtual size: 133KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 1.0MB - Virtual size: 6.5MB

.tls Size: 512B - Virtual size: 295B

.rdata Size: 3KB - Virtual size: 2KB

.idata Size: 3KB - Virtual size: 3KB

.reloc Size: 1024B - Virtual size: 795B

.rsrc Size: 23KB - Virtual size: 23KB

.text
Size: 134KB - Virtual size: 133KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 1.0MB - Virtual size: 6.5MB

.tls
Size: 512B - Virtual size: 295B

.rdata
Size: 3KB - Virtual size: 2KB

.idata
Size: 3KB - Virtual size: 3KB

.reloc
Size: 1024B - Virtual size: 795B

.rsrc
Size: 23KB - Virtual size: 23KB