42810b9caed6d451039f61d75c42e267_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

42810b9caed6d451039f61d75c42e267_JaffaCakes118
Size

20KB
MD5

42810b9caed6d451039f61d75c42e267
SHA1

35744f20e2201ac0a25a3af903cecc701e536763
SHA256

8a144fbb9196453d41c34ac11710e36a1d58e42e179f387d2ace0951bf843f0c
SHA512

b252c06f85c445daf1f7e2f164b34caac4421da615d8d53e43111c147c3f73a2a971a6405d05fd0b93aed0595ceb7012219c1b5b0b51232b0cd597a5f3a81a75
SSDEEP

384:X28MowRqtUxil0q56hRbiDU3GAhoJ7AVUKfy1WMi7V+4si16zBWueRlm:KowRO6il0IA2DU3C0Eri4NUDk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
42810b9caed6d451039f61d75c42e267_JaffaCakes118

Files

42810b9caed6d451039f61d75c42e267_JaffaCakes118
.exe windows:5 windows x86 arch:x86

012162818ecbc0290655b380bd1eecf3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetCursorPos
RegisterClassW
CheckMenuItem
AllowSetForegroundWindow
GetWindowTextLengthA
SetWindowPos
GetClientRect
ReleaseDC
GetWindowLongW
GetActiveWindow
CreateWindowExW
SetWindowTextW
DestroyMenu
LoadIconA
TrackPopupMenu
SetCapture
SendMessageW
LoadStringW
GetMenuStringW
GetSubMenu
MoveWindow
DestroyIcon
OpenClipboard
InflateRect
PtInRect
PostMessageW
GetMenu
SetActiveWindow
UnregisterClassA
DefWindowProcW

kernel32

GetCurrentThreadId
GetCPInfo
GetModuleFileNameW
SetEvent
FindFirstVolumeA
FindNextVolumeA
_lcreat
FreeLibrary
GetStdHandle
SetThreadExecutionState
DefineDosDeviceA
CreateFileW
GetModuleHandleA
ReadConsoleInputW
GetCommandLineA
GetFileSize
TlsAlloc
CloseHandle
GetProcessHeap
InitializeCriticalSectionAndSpinCount
LocalSize
SetupComm
TlsGetValue
HeapReAlloc
CreateJobObjectA
QueryPerformanceCounter
RaiseException
GetFileType
GetACP
FlushFileBuffers
GetFileSizeEx
GetConsoleTitleW
WideCharToMultiByte
GetCurrentProcessId
CreateThread
GetVersionExA
SetSystemPowerState
PurgeComm
GetStartupInfoA
InterlockedDecrement
RegisterWaitForSingleObject
GetSystemTimeAsFileTime
Sleep
GetCalendarInfoW
ClearCommError
GetTickCount
ReadConsoleA
GetProcessIoCounters
GetVolumeNameForVolumeMountPointA
EnumUILanguagesW
WriteFile
TerminateProcess
GetCurrentProcess
TlsSetValue
MultiByteToWideChar
TerminateJobObject
CreateDirectoryExA
SetUnhandledExceptionFilter
GetProcAddress
GetModuleHandleW
GetLastError
EnumSystemLocalesW
InterlockedIncrement

gdi32

GetTextColor
GetObjectW
RectVisible
Rectangle
SetMapMode
GetTextExtentPoint32W
SelectClipRgn
SetWindowExtEx
CombineRgn
Polyline
PolyPolyline
IntersectClipRect
CreatePen
GetDIBits
GetPixel
CreateRoundRectRgn
SetViewportExtEx
SetROP2
SetPixel
PolylineTo
SetPixelV
GetTextExtentPoint32A
CreateBrushIndirect
ExcludeClipRect
CreatePolygonRgn
GetWindowOrgEx
GetSystemPaletteEntries
ExtEscape
GetTextMetricsA
GetTextMetricsW
SetBrushOrgEx
Ellipse
GetBkColor
GetCurrentPositionEx
GetRgnBox
Escape
UnrealizeObject

setupapi

SetupQueryInfFileInformationA

msvcrt

_onexit
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
strlen
__dllonexit

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

012162818ecbc0290655b380bd1eecf3

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

gdi32

setupapi

msvcrt

Sections

.text Size: 10KB - Virtual size: 10KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 48KB - Virtual size: 132KB

.rsrc Size: 14KB - Virtual size: 13KB

.text
Size: 10KB - Virtual size: 10KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 48KB - Virtual size: 132KB

.rsrc
Size: 14KB - Virtual size: 13KB