a41fa7f04c40755e250667ec10357f25_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

a41fa7f04c40755e250667ec10357f25_JaffaCakes118
Size

348KB
MD5

a41fa7f04c40755e250667ec10357f25
SHA1

51de97a51451a6cbd18a11c4ace788c30fe5ba56
SHA256

abfbc7a443612a281c626f6947f4c606a1281df32b9545f5456148d4437060d7
SHA512

1dc7f17d1458e8ad8d702e010b644c89d9ae772178cd916ee7c87b92a93de9caa873c9b25516b31b7a7ab43d6630c48c576b05a5b5e4a9077baf358c414ce8e7
SSDEEP

6144:EG2WzpiO+POCwPuFK/C3tcHnnZCd3nvL0DKtAqGGEumV8:E3yiO+P2mFK/+WHn0d3YDQAEEuC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a41fa7f04c40755e250667ec10357f25_JaffaCakes118

Files

a41fa7f04c40755e250667ec10357f25_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2964f41fc03701b21e14c13c065163d6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\geekofelkk\oeekid\icnobku\eawfhevte\beoag\rogd

Imports

kernel32

RtlUnwind
EnumSystemLocalesA
LCMapStringA
GetCurrentProcessId
GetCommandLineA
GetStringTypeA
WaitForMultipleObjectsEx
GetEnvironmentStrings
VirtualProtect
GetStartupInfoA
GetModuleFileNameW
GetTimeFormatA
DeleteCriticalSection
InitializeCriticalSection
GetCPInfo
HeapReAlloc
VirtualQuery
OpenMutexA
TlsSetValue
GetCurrentThreadId
UnhandledExceptionFilter
ExpandEnvironmentStringsW
WriteFile
EnterCriticalSection
GetStdHandle
CompareStringA
TlsAlloc
lstrcmpi
GetProfileIntA
FreeEnvironmentStringsW
GetSystemTimeAsFileTime
ReadFile
TerminateProcess
HeapSize
ExitProcess
IsValidLocale
SetConsoleCtrlHandler
LeaveCriticalSection
GetOEMCP
GetCommandLineW
GetSystemInfo
VirtualAlloc
GetStartupInfoW
SetEnvironmentVariableA
LoadLibraryA
SetHandleCount
EnumResourceTypesA
GetTimeZoneInformation
FlushFileBuffers
GetUserDefaultLCID
GetEnvironmentStringsW
InterlockedExchange
TlsFree
CreateMutexA
IsValidCodePage
CloseHandle
WaitForDebugEvent
SetCurrentDirectoryW
HeapFree
GetLocaleInfoW
HeapAlloc
GetPrivateProfileIntA
WideCharToMultiByte
HeapDestroy
DeleteFileA
GetLastError
GetThreadLocale
EnumSystemLocalesW
ExpandEnvironmentStringsA
GetFileType
HeapCreate
QueryPerformanceCounter
SetStdHandle
GetLocaleInfoA
GetProcAddress
GetCurrentThread
GetModuleFileNameA
GetDateFormatA
CompareStringW
GetCurrentProcess
SetThreadContext
InitializeCriticalSectionAndSpinCount
LCMapStringW
DebugBreak
TlsGetValue
IsBadWritePtr
GetStringTypeW
SetLastError
lstrcmpiW
GetModuleHandleA
GetACP
VirtualFree
GetVersionExA
GetTickCount
GetCurrentDirectoryA
SetFilePointer
MultiByteToWideChar
FreeEnvironmentStringsA

user32

RegisterClassA
OpenClipboard
CallMsgFilterW
CheckMenuItem
EnumDisplayDevicesW
EnumWindowStationsA
DestroyWindow
DlgDirListComboBoxA
DefWindowProcA
PeekMessageW
UnregisterHotKey
HideCaret
ShowWindow
DdeDisconnectList
ReuseDDElParam
SetWindowsHookExW
GetClipboardOwner
GetClassInfoExA
RegisterClassExA
SetWindowTextW
DispatchMessageW
EnumDisplaySettingsExA
OemToCharW
GetMenuBarInfo
GetDlgItemTextA
MessageBoxW
SetClassWord
LoadIconA
CreateWindowExA
EndDeferWindowPos
ChangeDisplaySettingsW
GetClassInfoExW

comctl32

ImageList_Draw
InitCommonControlsEx
ImageList_SetOverlayImage
ImageList_GetIconSize
ImageList_GetBkColor
ImageList_AddMasked
DestroyPropertySheetPage
ImageList_GetImageRect
CreateToolbarEx
ImageList_SetFlags
_TrackMouseEvent

Sections

.text
Size: 152KB - Virtual size: 149KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2964f41fc03701b21e14c13c065163d6

Headers

File Characteristics

PDB Paths

Imports

kernel32

user32

comctl32

Sections

.text Size: 152KB - Virtual size: 149KB

.rdata Size: 68KB - Virtual size: 65KB

.data Size: 96KB - Virtual size: 105KB

.rsrc Size: 28KB - Virtual size: 27KB

.text
Size: 152KB - Virtual size: 149KB

.rdata
Size: 68KB - Virtual size: 65KB

.data
Size: 96KB - Virtual size: 105KB

.rsrc
Size: 28KB - Virtual size: 27KB