42c2d5ee1905744daafaba49e909a2dd_JaffaCakes118 | Triage

Sharing

General

Target

42c2d5ee1905744daafaba49e909a2dd_JaffaCakes118
Size

811KB
MD5

42c2d5ee1905744daafaba49e909a2dd
SHA1

f7caa20dbf26b37a11947ed01d719abc3813bd73
SHA256

8b482e9a9a926d937ee6648a7be0667d319a003805338c24c59642bfe0fb00c4
SHA512

d2b8f010092d89ab77b88715b2c802e2ad9550182e777619b0fbee547560d1f811edbbca5e638b01d60a760a21e486f2a1f208f52032ce0f23e05039adf2785b
SSDEEP

12288:SCvIke+7XFyWFuPhqMslKOd39qR+NAkNiUfK1koBF+nIdMl9kAKveMYm1i43:hIkeyAWF2h3ssS9q0r0pkoBF1dUK2z0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
42c2d5ee1905744daafaba49e909a2dd_JaffaCakes118

Files

42c2d5ee1905744daafaba49e909a2dd_JaffaCakes118
.exe windows:5 windows x86 arch:x86

3f9028529d77affdb418248046c4af30

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFree
GetTickCount
InitializeCriticalSection
GetStartupInfoA
CreateDirectoryW
CreateFileA
lstrlenW
GetConsoleMode
GetDriveTypeA
DeleteFileA
GetLocalTime
GetCommandLineW
VirtualProtectEx
FindClose
GetModuleFileNameA
LeaveCriticalSection
RemoveDirectoryA
TlsGetValue
GetFileSize
WriteConsoleW
EnterCriticalSection
CloseHandle
GetModuleHandleA
Sleep
GetCalendarInfoW

user32

IsWindowEnabled
IsWindow
GetWindowLongA
wsprintfA
EqualRect
GetWindowLongA
FillRect
MessageBoxA
GetWindowDC
PeekMessageA
DispatchMessageA
GetSysColor
IsWindowVisible

cryptdlg

CertConfigureTrustA
CertConfigureTrustW
CertTrustCertPolicy
CertTrustCleanup

advapi32

IsValidSid

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 800KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE