541b9db5965d82b6ad2be80351a22c17_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

541b9db5965d82b6ad2be80351a22c17_JaffaCakes118
Size

508KB
MD5

541b9db5965d82b6ad2be80351a22c17
SHA1

46e5079a7199813a32c74d26929fcb7814b5c5dc
SHA256

dd1ede2252a11a7027370ace74170905e7c991bd4eb3327f63d4761958c44403
SHA512

a1c9caecbaef5c9889ea50c281ed9acfb2ec2efb67b6f2e9b9f3cecb61b697d33bc3359a4c6327f012892df426b163be33091e9ca9087679d260159ca24c1366
SSDEEP

12288:WKNhQi/ilI2gR3s/xxdTyLRZhPh4xQpmQjwI3M:bU/TgBiyD/4xZH4M

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
541b9db5965d82b6ad2be80351a22c17_JaffaCakes118

Files

541b9db5965d82b6ad2be80351a22c17_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d8727f82c9d6a49d0544ea9959267380

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
CreateFileA
GetTimeFormatW
lstrcmpA
GetProcessHeap
FindClose
SystemTimeToFileTime
GetModuleHandleW
ExitThread
_lread
FindFirstFileW
ExpandEnvironmentStringsA
FlushInstructionCache
GetBinaryTypeA
GetExitCodeProcess
DeviceIoControl
TerminateProcess
CompareStringA
GetCurrentDirectoryA
GlobalUnlock
ExpandEnvironmentStringsA
SetCurrentDirectoryA
FindFirstFileA
InterlockedCompareExchange
GetSystemDirectoryW
InitializeCriticalSectionAndSpinCount
FormatMessageW
LocalAlloc
InitializeCriticalSection
GetLastError
GetDateFormatW
HeapDestroy
GetStringTypeW
GlobalSize
GetModuleFileNameA
ExpandEnvironmentStringsW
GetWindowsDirectoryA
SetCurrentDirectoryA
GetDateFormatW
GetModuleHandleA
SetThreadPriority
SetHandleCount
GetTempPathA
CompareFileTime
GetFileAttributesA
SetErrorMode
LocalReAlloc
InitializeCriticalSectionAndSpinCount
GetFileSize
GetStartupInfoA
VirtualFree
SetThreadPriority
VirtualProtect
LoadLibraryExA
GetPrivateProfileStringA
FindNextFileA
HeapFree
CreateIoCompletionPort
RemoveDirectoryA
WritePrivateProfileStringA
SetThreadPriority
GetCurrentProcessId
GetWindowsDirectoryA
SetFileAttributesA
ResetEvent
GetProfileStringA
GetThreadLocale
FreeEnvironmentStringsW
SetPriorityClass
CreateIoCompletionPort

gdi32

InvertRgn
GetDeviceCaps
GetTextExtentPointA
CreateDCW
GetTextMetricsW
GetTextMetricsW
EnumFontFamiliesExA
RealizePalette
RemoveFontResourceA
GetLayout
GetBkColor
EndDoc
GetTextExtentPointW
CreateDCA
SetPixel
GetClipRgn
RestoreDC
CreatePatternBrush
SetBrushOrgEx
SelectPalette
RestoreDC
SetDIBits
CreatePen
GetTextExtentPoint32W
GetStockObject
LPtoDP
PlayMetaFile
SetWindowOrgEx
CreateCompatibleDC
RemoveFontResourceA
GetSystemPaletteEntries
GetObjectA
OffsetViewportOrgEx
SetBkColor
SetMetaFileBitsEx
EndPage
CreatePen
CreateDIBSection
CreateFontA
GetTextCharset
Escape
UnrealizeObject
GetTextAlign
RemoveFontResourceA
GetSystemPaletteEntries
EnumFontFamiliesExA
SetDIBits
Rectangle
GetClipBox
CreateBitmap
EnumFontsW
EnumFontFamiliesExA
GetViewportOrgEx
RestoreDC
SetMetaFileBitsEx
CreateFontIndirectW
ExtTextOutA
CombineRgn
EndDoc
GetClipBox
GetObjectA
CreateFontA
SelectObject
GetTextMetricsA
SetMetaFileBitsEx
CreatePen
StretchBlt
SetDIBits
CreateBitmap
StartDocA
GetClipRgn

user32

EndDeferWindowPos
MonitorFromRect
DestroyWindow
DdeUnaccessData
SetWindowPos
CreateWindowExW
CreateWindowExW
DefWindowProcA
DrawTextW
EnumThreadWindows
MsgWaitForMultipleObjects
OpenClipboard
DdeCmpStringHandles
ChildWindowFromPoint
DdeUninitialize
SendMessageW
EmptyClipboard
GetWindowTextLengthW
SetDlgItemTextA
IntersectRect
CharNextW
GetClientRect
EnableWindow
DispatchMessageW
CreateCaret
SendDlgItemMessageW
SetDlgItemTextW
SetFocus
DdeConnect
CharUpperBuffW
CreatePopupMenu
BeginPaint
LoadCursorA
DdeGetData
RedrawWindow
WinHelpA
ChildWindowFromPoint
InflateRect
EnableWindow
OpenInputDesktop
SetProcessDefaultLayout
ChildWindowFromPoint
CreateDialogParamA
GetWindowThreadProcessId
LoadCursorA
SetWindowPos
IsWindowEnabled
IsHungAppWindow
TileWindows
SetMenuDefaultItem
ChildWindowFromPoint
GetDlgItemTextA
SetWindowTextW
PtInRect
SwitchToThisWindow
GetMonitorInfoW
GetDlgItemTextA
GetMonitorInfoA
ChildWindowFromPoint
GetMenuDefaultItem
SetScrollRange
SendMessageA
IsIconic
DrawFocusRect
GetMessagePos
SetScrollRange
ShowCursor
CreateWindowExW
TileWindows
CharNextA
CloseClipboard
EnumWindows
EnumWindows
WaitMessage

Sections

.text
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 492KB - Virtual size: 964KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d8727f82c9d6a49d0544ea9959267380

Headers

File Characteristics

Imports

kernel32

gdi32

user32

Sections

.text Size: 7KB - Virtual size: 8KB

.data Size: 492KB - Virtual size: 964KB

.rdata Size: 6KB - Virtual size: 8KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 7KB - Virtual size: 8KB

.data
Size: 492KB - Virtual size: 964KB

.rdata
Size: 6KB - Virtual size: 8KB

.rsrc
Size: 1024B - Virtual size: 4KB