42310f8b43a074b30e43f05ad1741125_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

42310f8b43a074b30e43f05ad1741125_JaffaCakes118
Size

176KB
MD5

42310f8b43a074b30e43f05ad1741125
SHA1

28d24b3b22a7373ec11a9fd5e9343a3f6a1ffb03
SHA256

e17c19ff8d84ab342ebd1075fa27d5fc26918f0fc2d04114603d5f70e507af91
SHA512

455f320b0afcaec370bcaa4548640fcadeb6d4e6d79120d5ffeffff08c8ef75dd0b088f1f3aa4c0b6949966c69f7438eb59dbe52bbca9a03b49b65110ea5e78c
SSDEEP

3072:G85yrHkBBC/u1rL2RM94yUnd75kJL9jZys1xXBiwyfxwp:fKHiMiH2mjim/DxXQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
42310f8b43a074b30e43f05ad1741125_JaffaCakes118

Files

42310f8b43a074b30e43f05ad1741125_JaffaCakes118
.exe windows:5 windows x86 arch:x86

d685a00bf2183a622c9ada129c0e0a2f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\KilDOkdsFKqfQ\fKiojdpP\eOjhdacFw.pdb

Imports

kernel32

AddAtomW
SetThreadLocale
SetCommState
CloseHandle
GetCommandLineW
GlobalMemoryStatus
CallNamedPipeW
LocalFree
LocalUnlock
IsValidLocale
GetTickCount
RegisterWaitForSingleObject
LoadLibraryExA
ResumeThread
GetStartupInfoA
FindResourceA
GetDateFormatW
GlobalAddAtomW
SetCommBreak
Sleep
HeapValidate
GetWindowsDirectoryW
GetFileAttributesW
GetTempPathA
HeapFree
DefineDosDeviceW
GetModuleHandleA
RemoveDirectoryW
SetThreadPriority
GetTempFileNameW
GlobalMemoryStatusEx
PulseEvent
GetProcessHeap
GetFileInformationByHandle
GetCompressedFileSizeW
SetThreadAffinityMask
IsBadStringPtrW
GetCommModemStatus
CreateEventW
LoadLibraryA
HeapAlloc
SetFilePointer
GlobalGetAtomNameA
OpenFileMappingA
IsDBCSLeadByte
CreateRemoteThread
CreateSemaphoreA
FindFirstChangeNotificationW
SetNamedPipeHandleState
GetSystemDefaultUILanguage
lstrlenA
GetShortPathNameW
EnterCriticalSection
FindClose
GlobalLock
WaitForSingleObjectEx
VirtualAlloc

msvcrt

wcstombs
isalpha
isspace
_controlfp
swscanf
__set_app_type
iswctype
mbstowcs
strcspn
__p__fmode
strtok
sprintf
gets
wcstol
free
getenv
__p__commode
wcstoul
wcslen
localtime
fread
ftell
atoi
wcstok
sscanf
realloc
ungetc
atol
wcscat
_amsg_exit
_initterm
_ismbblead
fprintf
strtol
_XcptFilter
_exit
_cexit
__setusermatherr
wcscoll
wcscmp
fclose
printf
wcsstr
wcscpy
fputs
strerror
__getmainargs

user32

CharPrevA
CheckMenuItem
DialogBoxParamW
GetMenuStringA
CharNextA
GetMessageA
MonitorFromPoint
IsZoomed
GetMenuStringW
CharNextExA
LoadCursorA
MapWindowPoints
TrackPopupMenu
GrayStringW
GetKeyboardLayoutNameW
GetUpdateRect
GetClassNameW
SetDlgItemTextA
RemoveMenu
SetActiveWindow
DeleteMenu
PostMessageW
PostThreadMessageW
DispatchMessageW
DrawTextW
WindowFromPoint
GetMenuState
GetWindowTextW
AttachThreadInput
CharNextW
DialogBoxIndirectParamW
DestroyAcceleratorTable
OpenIcon
wsprintfA
IsRectEmpty
ActivateKeyboardLayout
EnumWindows
SendMessageA
GetWindowDC
IsCharAlphaA
LoadStringW
DefDlgProcA
HiliteMenuItem
MessageBoxA
EnableScrollBar
WaitForInputIdle
GetClassInfoExW
TileWindows
LoadMenuW
SetWindowLongA
MapVirtualKeyExW
DrawIconEx
PostThreadMessageA
IsWindowEnabled
VkKeyScanW
CharToOemA
MapVirtualKeyA
IsDialogMessageW
GetSubMenu
DrawFocusRect
IsDialogMessageA
SetUserObjectInformationW
SetMenuDefaultItem
InsertMenuItemW
GetClassLongW
GetMessagePos
CharUpperBuffW
DrawIcon
GetMenuItemCount
ToUnicodeEx
CharUpperBuffA
keybd_event
LoadImageW
ArrangeIconicWindows
RemovePropW
CheckRadioButton
LoadIconA
DrawStateW
GetGUIThreadInfo
KillTimer
DefDlgProcW
GetDlgCtrlID
ShowCaret
GetKeyboardType
MessageBoxExW
GetScrollPos
GetClipCursor
SendDlgItemMessageA
InternalGetWindowText
RegisterWindowMessageW
IsCharUpperA
GetIconInfo
CharUpperA
InsertMenuW
EnableMenuItem
RegisterClassA
IsWindowVisible
GetKeyState
GetMessageTime
ReleaseDC
DrawAnimatedRects
AppendMenuW
SendDlgItemMessageW
GetMessageW
ReplyMessage
SetWindowLongW
GetClientRect
CreateMenu
GetClassInfoW
CreateDialogParamA
DestroyMenu
RegisterWindowMessageA
BeginPaint
ChangeMenuW
SetParent
GetMenuCheckMarkDimensions
PostQuitMessage
GetDC
GetWindowLongA
DrawTextA
GetScrollRange
SetCaretPos

Exports

Exports

?GenericOutputInfoYSUh@@YGK_KHE[D

Sections

.text
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 211KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 90KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d685a00bf2183a622c9ada129c0e0a2f

Headers

File Characteristics

PDB Paths

Imports

kernel32

msvcrt

user32

Exports

Exports

Sections

.text Size: 68KB - Virtual size: 67KB

.data Size: 14KB - Virtual size: 211KB

.rsrc Size: 90KB - Virtual size: 90KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 68KB - Virtual size: 67KB

.data
Size: 14KB - Virtual size: 211KB

.rsrc
Size: 90KB - Virtual size: 90KB

.reloc
Size: 2KB - Virtual size: 1KB