42924b06191a673a885c54f531ebb63e_JaffaCakes118

General

Target

42924b06191a673a885c54f531ebb63e_JaffaCakes118
Size

16KB
MD5

42924b06191a673a885c54f531ebb63e
SHA1

c561f3f8bd3c9f5a4f874d9f33f326f65c48a0e3
SHA256

ad87e7fc81e4a74aa122244c737cdab349b38e5842059cc72721f474e1691df7
SHA512

f09e05a9ee5779d48b6deafd4e584e0e729f679b2b257a847fc9e5ab243345ed6760a1e9434184288dcc9254308946462de963ead38bcf67420f4ab2e5ad6484
SSDEEP

192:jCeyHc42bF4NrcQwZwxHFMk7vKaESDMxHRNaQ5H7xcUv5CsXtExIZvqTwzw:VyHX2p6rjwZmHFMkXAxHoU1XtExI0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
42924b06191a673a885c54f531ebb63e_JaffaCakes118

Files

42924b06191a673a885c54f531ebb63e_JaffaCakes118
.exe windows:1 windows x86 arch:x86

ba3f9190fad91ce8ab83291d0196a20e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadImageA
CharNextA
GetWindowLongA
WinHelpA
EndDialog
SystemParametersInfoA
LoadStringA
SendDlgItemMessageA
GetDlgItem
DialogBoxParamA
SetWindowPos
LoadBitmapA
SendMessageA
SetWindowLongA
GetSysColor
DestroyWindow
wsprintfA
SetDlgItemTextA
GetParent
GetWindowRect
MapWindowPoints

kernel32

ExitProcess
GetLogicalDrives
GetCommandLineA
WinExec
GetDriveTypeA
GetModuleHandleA
lstrlenA
lstrcatA
GetWindowsDirectoryA
lstrcmpiA
GetStartupInfoA

gdi32

SetBkMode
DeleteObject
CreateFontIndirectA
SetTextColor
CreateSolidBrush
CreateCompatibleDC
GetObjectA
GetPixel
ExtFloodFill
SelectObject
DeleteDC

shell32

ord39
ord30
ord36
ord45
ord34
ord183

advapi32

RegCreateKeyA
RegQueryValueExA
RegOpenKeyA
RegSetValueExA
RegCloseKey

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 156B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 466B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ba3f9190fad91ce8ab83291d0196a20e

Headers

File Characteristics

Imports

user32

kernel32

gdi32

shell32

advapi32

Sections

.text Size: 4KB - Virtual size: 3KB

.data Size: 512B - Virtual size: 156B

.idata Size: 1KB - Virtual size: 1KB

.rsrc Size: 8KB - Virtual size: 8KB

.reloc Size: 512B - Virtual size: 466B

.text
Size: 4KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 156B

.idata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 8KB - Virtual size: 8KB

.reloc
Size: 512B - Virtual size: 466B