1771cb1134acec4ad6e7d026c4e97961_JaffaCakes118

General

Target

1771cb1134acec4ad6e7d026c4e97961_JaffaCakes118
Size

46KB
MD5

1771cb1134acec4ad6e7d026c4e97961
SHA1

71b8370424315e7eb97f4568ad7d16ccd728f602
SHA256

d4d24f47f5c6736019211fde130939e8f7b020d78319536b444449546f442b2d
SHA512

7db9c0b562711e248052474a6aef051b86e65aaadb77769435501ef6b86f0067b1684fdd858f8a925e3e32695b14f0ba74fef51c28a275b14d5d6e2d5d9c302d
SSDEEP

768:/A5Y0LJOqTmBMvn/MdSwUG3j1HULvId58ZNdLi/loBZkmVp902vE39w2:/ArLoqyBMvnUMwZ07IdCJu2dVpfY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1771cb1134acec4ad6e7d026c4e97961_JaffaCakes118

Files

1771cb1134acec4ad6e7d026c4e97961_JaffaCakes118
.exe windows:5 windows x86 arch:x86

a7a976d1e4453cb9455e94d1df3099da

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetCursorPos
OpenWindowStationA
GetKeyState
ExitWindowsEx
EndDialog
MsgWaitForMultipleObjects
PeekMessageA
SetProcessWindowStation
DrawIcon
GetWindowLongW
FindWindowExW
CloseWindowStation
GetDlgItem
GetForegroundWindow
SetThreadDesktop
ToUnicode
GetIconInfo
GetWindowThreadProcessId
PeekMessageW
GetDlgItemTextA
GetMessageW
GetMessageA
GetClipboardData
CloseDesktop
GetClassNameW
LoadCursorW
OpenDesktopA
DispatchMessageW
GetDlgItemTextW
GetKeyboardState
GetWindowTextW
SendMessageW
CharLowerBuffA

kernel32

GetTimeZoneInformation
SetFilePointer
CreateFileW
CreateEventW
WaitForSingleObject
GetModuleFileNameW
DisconnectNamedPipe
SetEndOfFile
CreateMutexW
CloseHandle
GetLogicalDrives
lstrcpynW
HeapAlloc
Sleep
ExpandEnvironmentStringsW
lstrlenW
GetModuleFileNameA
GetSystemTime
GetCommandLineA
CopyFileW
GlobalUnlock
lstrcmpiA
WideCharToMultiByte
GetThreadPriority
GetProcessTimes
GetLocalTime
FindFirstFileW
HeapFree
GetSystemTimeAsFileTime
CreateFileMappingW
GetFileSizeEx
GetUserDefaultUILanguage
DeleteFileW
lstrcpyA
OpenProcess
GetCurrentThreadId
lstrcatA
lstrlenA
GlobalLock
SetEvent
MultiByteToWideChar
ReadFile
lstrcmpiW
GetExitCodeProcess
EnterCriticalSection
OpenMutexW
FlushFileBuffers
GetTempFileNameW
LeaveCriticalSection
FindClose
WriteFile
GetProcessHeap
CreateDirectoryW
SetLastError
SetFileTime
MapViewOfFile
HeapReAlloc

Sections

.jkboz
Size: 36KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.klencr
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.srupun
Size: 7KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a7a976d1e4453cb9455e94d1df3099da

Headers

File Characteristics

Imports

user32

kernel32

Sections

.jkboz Size: 36KB - Virtual size: 56KB

.klencr Size: 1KB - Virtual size: 4KB

.srupun Size: 7KB - Virtual size: 76KB

.jkboz
Size: 36KB - Virtual size: 56KB

.klencr
Size: 1KB - Virtual size: 4KB

.srupun
Size: 7KB - Virtual size: 76KB