42efd25cc72842a53c0038d8819bfdc1_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

42efd25cc72842a53c0038d8819bfdc1_JaffaCakes118
Size

19KB
MD5

42efd25cc72842a53c0038d8819bfdc1
SHA1

d650aafb0c3ebe5707db675e307c20c500e6d8ed
SHA256

a70c2bd8bdf9386d664476aa2c43388a667cd260a6ac2d802bcd9ccf4e01ba41
SHA512

8948ffe2e9f46281e8ceaffa9dad7c81d89626012ad12928d144f38d15c54c5d7c240fe2d4a0d49b1d4665e77a702bc89103bef5b25f14f99fc308b018480312
SSDEEP

384:d64shO2cyJFIGEvoxx3eJhOMnXZliLo6Uy35/FRa:d6dhO2cyJFX6oxxOJ/JliLgw/FRa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
42efd25cc72842a53c0038d8819bfdc1_JaffaCakes118

Files

42efd25cc72842a53c0038d8819bfdc1_JaffaCakes118
.dll windows:4 windows x86 arch:x86

82efdcddd1e4fc22136522f52aa647c3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

FindNextFileW
OpenJobObjectA
SetTapeParameters
OpenThread
ClearCommBreak
GetPrivateProfileSectionA
SetEndOfFile
RegisterWaitForSingleObject
GetConsoleInputExeNameW
GetLastError
GetDateFormatW
VirtualProtectEx
EnumCalendarInfoA
CallNamedPipeA
_lcreat
EraseTape
InitializeCriticalSection
SetConsoleCursor
GetUserDefaultUILanguage
lstrcmpW
WriteConsoleInputW
GetDiskFreeSpaceW
SetConsoleKeyShortcuts
EnumDateFormatsA
DnsHostnameToComputerNameA
SetProcessShutdownParameters
OpenEventW
IsBadCodePtr
Beep

msvcrt

$I10_OUTPUT
_msize
_winmajor
strcmp
fabs
perror
_strcmpi
??9type_info@@QBEHABV0@@Z
strncat
__p__winminor
_wchmod
sinh
frexp
_makepath
_outpd
fputc
iswascii
_wstrtime
??_7__non_rtti_object@@6B@
ftell

gdi32

GetLayout
Rectangle
SetBkColor
GetRandomRgn
StartDocA
PATHOBJ_vGetBounds
Arc
EngCreateSemaphore
GdiGradientFill
CreatePolyPolygonRgn
PolyPolyline
FixBrushOrgEx
GdiPlayEMF
EngDeleteSemaphore
SetDIBColorTable
GdiEntry4
EngGetCurrentCodePage
GdiConvertBitmapV5
EngComputeGlyphSet
GetEnhMetaFileHeader
ResetDCW
EndPath
GetDCOrgEx
GdiFullscreenControl
GetCharWidthInfo
CreateDIBSection

user32

GetClipboardOwner
CreateDialogParamA
ScrollChildren
GetAltTabInfoW
GetMenuContextHelpId
GetTopWindow
MessageBoxExA
DdeSetQualityOfService
InvertRect
SendMessageW
SetFocus
GetInternalWindowPos
SubtractRect
GetNextDlgTabItem
UserRealizePalette
SetWindowsHookA
BroadcastSystemMessageW
GetMessageExtraInfo
ModifyMenuA
CreateDialogIndirectParamA
SetUserObjectSecurity
SetWindowsHookExW
PostMessageW
GetMonitorInfoA
DlgDirListW

shlwapi

PathIsSystemFolderW
SHRegSetUSValueW
SHCreateStreamWrapper
StrIsIntlEqualW
PathBuildRootA
StrFromTimeIntervalW
PathParseIconLocationW
AssocQueryStringW
ColorRGBToHLS
PathFindFileNameA
PathCommonPrefixW
StrCmpW
StrNCatA
PathIsUNCServerShareA
PathFindSuffixArrayW
PathIsSystemFolderA
SHRegCreateUSKeyA
SHEnumValueA
StrCmpNW
wvnsprintfA
UrlCreateFromPathW
SHCreateStreamOnFileW
StrDupW
PathFindOnPathW
PathGetArgsA
PathFindOnPathA
SHGetValueW

Exports

Exports

AmwDemcbemGucye
VeYxygl
VkMoejmbk
MrAcyucwTdeglstAfvunxYxu
TuwEmlzcueInurwPpi
BinxkmuXkwiek
ZrbHlwgMeqhfwZzegug

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

82efdcddd1e4fc22136522f52aa647c3

Headers

File Characteristics

Imports

kernel32

msvcrt

gdi32

user32

shlwapi

Exports

Exports

Sections

.text Size: 5KB - Virtual size: 4KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 9KB - Virtual size: 9KB

.reloc Size: 512B - Virtual size: 16B

.text
Size: 5KB - Virtual size: 4KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 9KB - Virtual size: 9KB

.reloc
Size: 512B - Virtual size: 16B