41da08ae8f907c37e79db746b825636b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

41da08ae8f907c37e79db746b825636b_JaffaCakes118
Size

19KB
MD5

41da08ae8f907c37e79db746b825636b
SHA1

851e3505d3d90154fbfe0e91b656fc8238fa74e5
SHA256

0233878c38a843deb6bd25ccd1eff45783e678519dbb8141c819a54582a9e793
SHA512

a2d520bbdf8e16a75117d6ed7ab198e808a80a6b37d8ddb539f095521199b5255aae47b2c3bede707bd8bfc0d329f895235739c61a0d78990643a40d679f0c9e
SSDEEP

384:0zPDBvBMQNkNuWBMiSphvla+bcFiA4VfgOJZ:0zPDBSAkNuqMiSphvs+QFiA4VfgI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
41da08ae8f907c37e79db746b825636b_JaffaCakes118

Files

41da08ae8f907c37e79db746b825636b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ebe8045066f2a1e15083d158896e5ea8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreateIcon
GetWindowTextA
InsertMenuA
DrawTextA
CalcMenuBar
AppendMenuW
GetFocus
GetDC
GetWindowTextLengthA
GetMenu
IsMenu
DrawTextW
AlignRects
DrawIconEx

advapi32

RegEnumValueW
RegEnumKeyW
RegDeleteValueA
RegQueryValueA
RegFlushKey
RegCreateKeyExW
RegOpenKeyExA
RegDeleteValueW
RegQueryInfoKeyA
RegGetKeySecurity
RegLoadKeyA
RegQueryValueW
RegReplaceKeyA
RegCreateKeyExA
RegQueryInfoKeyW
RegDeleteKeyW
RegDeleteKeyA
RegQueryValueExW
RegEnumKeyExW
RegGetKeySecurity
RegQueryValueExW
RegReplaceKeyA
RegOpenKeyA
RegDeleteKeyA
RegEnumKeyA
RegEnumKeyExA
RegQueryInfoKeyA
RegOpenKeyW
RegFlushKey
RegCreateKeyExW
RegQueryValueW
RegQueryInfoKeyW
RegOpenKeyExA
RegCreateKeyW
RegQueryValueA

kernel32

CopyFileExA
CopyFileA
GetConsoleMode
FindAtomA
Sleep
GetFileTime
WriteFile
CreateThread
CopyFileW
DeleteFileW
GetLastError
GetCommandLineA
OpenFile
GetCPInfo
ReadConsoleA
OpenFileMappingA
GetCommandLineA
GetCPInfo
CopyFileW
DeleteAtom
FindAtomA
DeleteFileW
CopyFileExA
DeleteFileA
GetFileTime
ReadFile
GlobalFree
GetConsoleMode
GetStdHandle
SetLastError
GetComputerNameA
ReadFile
OpenFileMappingA
ReadConsoleA
CopyFileA
ExitThread
CopyFileW
DeleteFileW
DeleteAtom
CopyFileExA
CopyFileExW
WriteFile
GetFileTime
FindAtomA
GetFileSize
FindFirstFileA
DeleteFileA

gdi32

CancelDC
AddFontResourceTracking
RestoreDC
AbortPath
GetDCOrgEx
AddFontResourceExW
ClearBrushAttributes
SetTextColor
GetCurrentPositionEx
ClearBitmapAttributes
GetPixel
BitBlt
GetClipBox
RestoreDC
SetTextColor
AddFontResourceExA
AddFontResourceTracking
DeleteDC
BeginPath
CancelDC
GetBitmapBits
ExtTextOutA
AddFontResourceW
GetCurrentPositionEx

comctl32

ImageList_BeginDrag
ImageList_Remove
ImageList_DrawEx
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_DragMove
ImageList_Draw
ImageList_LoadImageA
ImageList_LoadImageW
ImageList_Create
ImageList_Merge
ImageList_DragEnter
ImageList_LoadImageW
ImageList_GetImageRect
ImageList_Remove
ImageList_AddMasked
ImageList_GetImageCount
ImageList_DragMove
ImageList_Copy
ImageList_DrawIndirect
ImageList_Create
ImageList_Read
ImageList_Destroy
ImageList_GetIconSize
ImageList_DragLeave
ImageList_Replace
ImageList_LoadImageA

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 259B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ebe8045066f2a1e15083d158896e5ea8

Headers

File Characteristics

Imports

user32

advapi32

kernel32

gdi32

comctl32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 10KB - Virtual size: 40KB

.reloc Size: - Virtual size: 3KB

.rsrc Size: 512B - Virtual size: 259B

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 10KB - Virtual size: 40KB

.reloc
Size: - Virtual size: 3KB

.rsrc
Size: 512B - Virtual size: 259B