42af16fed44d77358ad807155433327c_JaffaCakes118

General

Target

42af16fed44d77358ad807155433327c_JaffaCakes118
Size

137KB
MD5

42af16fed44d77358ad807155433327c
SHA1

a76b79b64ed3882fe4eaea735fced0356bf9309f
SHA256

0621ec56fce5c50520d30f5c7c3b67decf55c5fe403c93931e115fb58624d83a
SHA512

03a56884f97b013a029c3a44b5c6f9f86325621082dee497d6b89bfd38d93ee02ed2949ce9bbab85e392218a3a21328517d75b4be909a23b896522a31d3dd938
SSDEEP

1536:Uj+eaID1qLXROLgYFfo9+Ky8EeLOiB0kBGMLq2yOu7rUIpA3u02QhDt8KFAsj3M1:++eaIggmXrvBXsQqz7AIpSuYhuuO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
42af16fed44d77358ad807155433327c_JaffaCakes118

Files

42af16fed44d77358ad807155433327c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d2ca8f9631d642892c145fb99b3854fa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetPaletteEntries
IntersectClipRect
UnrealizeObject
CreatePatternBrush
MoveToEx
StretchBlt
SetDIBColorTable
SetColorSpace
Chord
SelectObject
PlayEnhMetaFile
ScaleViewportExtEx
DeleteObject
OffsetViewportOrgEx
SetWindowExtEx
SetViewportOrgEx
CreateRectRgn
CreateCompatibleBitmap
StartPage
Rectangle
BitBlt
SaveDC
MaskBlt
GetBrushOrgEx
EndDoc
GetPixel
SetTextColor
PtVisible
SelectClipPath
SetStretchBltMode
CreateBitmap
GetDCOrgEx
GetDIBColorTable
SetBkMode
SetMapMode
GetStockObject
PatBlt
LineTo
SetROP2
SelectPalette
LPtoDP
SetBrushOrgEx
GetTextMetricsA
GetCharWidth32A
RestoreDC
SetBkColor
DeleteDC
CreatePen
GetDeviceCaps
GetEnhMetaFilePaletteEntries
EndPage

user32

CharNextA

kernel32

lstrlenW
GlobalFindAtomA
GetCurrentThreadId
GetCommandLineW
GetACP
DeleteFileA
lstrlenA
GetCurrentProcess
IsDebuggerPresent
MulDiv
GetCurrentProcessId
lstrcmpiW
GetLastError
SetLastError
GetUserDefaultLangID
GetModuleHandleA
GetConsoleOutputCP
GetProcessHeap
GetOEMCP
GetThreadLocale
lstrcmpiA
SetCurrentDirectoryA
CopyFileA
lstrcmpA
GetCommandLineA
RemoveDirectoryA
GetModuleHandleW
GetTickCount
GlobalFindAtomW
DeleteFileW
GetCurrentThread
GetVersion
VirtualAlloc

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d2ca8f9631d642892c145fb99b3854fa

Headers

File Characteristics

Imports

gdi32

user32

kernel32

Sections

.text Size: 14KB - Virtual size: 13KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 103KB - Virtual size: 103KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 14KB - Virtual size: 13KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 103KB - Virtual size: 103KB

.rsrc
Size: 16KB - Virtual size: 15KB