41bf538a2e1e92514cc61170b9cbe20b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

41bf538a2e1e92514cc61170b9cbe20b_JaffaCakes118
Size

167KB
MD5

41bf538a2e1e92514cc61170b9cbe20b
SHA1

199391bcfd0b7b1c02d0a7d78ca58bcd1f6e74b8
SHA256

c05f3fd372f66e7e9f7e93ab78c5f009e0a12a54137e75cc992585c7337623f2
SHA512

9985da24667c458209511001998960cddc3a9a7e14e625ed88773498bdcc76a42bd827d1a48270fba4681ddec6ede2daee3642d8bf72fd1a86887defad524b45
SSDEEP

3072:mpjui5rx3/y/5umAi7O4onf60ENZOQbi8d8XwPYVKC3AlKhWVdOE:mpjNrl/Q5tAaO4A60Eij8jNKgPO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
41bf538a2e1e92514cc61170b9cbe20b_JaffaCakes118

Files

41bf538a2e1e92514cc61170b9cbe20b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5c64fc40c2393e8847b8e97b26e83377

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
GetModuleHandleA
GetProcAddress
GetVersionExA
GetLocaleInfoA
GetFileType
SetEvent
DeleteFileA
HeapFree
EnumCalendarInfoA
Sleep
VirtualAlloc
GetModuleFileNameA
GetUserDefaultLCID
GetCommandLineA
FindClose
LoadResource
WriteFile
GlobalAlloc
ExitThread
GetStringTypeA

version

VerFindFileA

gdi32

CreatePenIndirect
CreateDIBitmap
GetBitmapBits
SelectObject
CreateDIBSection
CreateCompatibleDC
CopyEnhMetaFileA
SetBkColor
LineTo

shell32

DragQueryFileA

user32

IsDialogMessageA
DispatchMessageA
GetMessagePos
GetActiveWindow
GetClassNameA
DestroyIcon
DestroyMenu
SetWindowsHookExA
GetCursor
RedrawWindow
EnableMenuItem
OemToCharA
MapWindowPoints
SetScrollInfo
SetWindowLongA
OpenClipboard
SetParent
DrawTextA
GetWindowLongW
FillRect
DispatchMessageW
IsChild
GetSysColor
WaitMessage
SetClassLongA
InvalidateRect
SetRect
GetCapture
GetClientRect
SetCursor
GetWindowRect
InflateRect
BeginPaint
DrawEdge
ShowScrollBar
IsWindow
ScrollWindow
GetKeyState
CharToOemA
SetWindowTextA
EnumThreadWindows
GetWindowLongA
GetDesktopWindow
LoadIconA
GetMenuItemCount
RegisterClassA
CreatePopupMenu
InsertMenuItemA
IntersectRect
CharNextW
EqualRect
GetDlgItem
DeleteMenu
LoadKeyboardLayoutA
GetWindowThreadProcessId
IsWindowVisible
EndPaint
GetLastActivePopup
KillTimer
IsWindowUnicode

Sections

CODE
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 131KB - Virtual size: 195KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 517B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5c64fc40c2393e8847b8e97b26e83377

Headers

File Characteristics

Imports

kernel32

version

gdi32

shell32

user32

Sections

CODE Size: 29KB - Virtual size: 29KB

.tls Size: 3KB - Virtual size: 3KB

.data Size: 131KB - Virtual size: 195KB

DATA Size: 1024B - Virtual size: 517B

CODE
Size: 29KB - Virtual size: 29KB

.tls
Size: 3KB - Virtual size: 3KB

.data
Size: 131KB - Virtual size: 195KB

DATA
Size: 1024B - Virtual size: 517B