376eaa90afb0974e21490401b81cf159_JaffaCakes118

General

Target

376eaa90afb0974e21490401b81cf159_JaffaCakes118
Size

49KB
MD5

376eaa90afb0974e21490401b81cf159
SHA1

3ca3d83b8171401e2117bcce3e49467fa95b0bd9
SHA256

41c3219b2fe72dcbf42426bd284d1c0d0c61840572681e30d80456aa9a1dc801
SHA512

0835de752f70c6f1cafd93cddc97fcc550a5690ba8c398de05199b7763716b933fa06f1910e91daf5151039c264b26671fc7edc64ffc1bbbe4e5b1ab58242105
SSDEEP

768:DUmjVHwmncgUo48kTJsp0M+BnOLCFGJ0Cv/kQ+iPtyjuGdQ13grijeW0xzZ:DBw6tUo48k3nGJZcTiPsy13OiX0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
376eaa90afb0974e21490401b81cf159_JaffaCakes118

Files

376eaa90afb0974e21490401b81cf159_JaffaCakes118
.exe windows:5 windows x86 arch:x86

7a1c61abff0a1f78db2368e95ac9f32b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetThreadDesktop
GetWindowThreadProcessId
LoadCursorW
GetIconInfo
GetKeyState
CloseWindowStation
MsgWaitForMultipleObjects
GetDlgItemTextA
GetMessageA
GetDlgItem
GetClassNameW
ExitWindowsEx
OpenWindowStationA
SetProcessWindowStation
DispatchMessageW
GetKeyboardState
CharLowerBuffA
EndDialog
GetDlgItemTextW
GetForegroundWindow
PeekMessageA
FindWindowExW
GetWindowLongW
SendMessageW
GetMessageW
GetCursorPos
GetClipboardData
CloseDesktop
ToUnicode
GetWindowTextW
PeekMessageW
OpenDesktopA
DrawIcon

kernel32

GetCurrentThreadId
GetFileSizeEx
GetThreadPriority
GlobalUnlock
GetProcessTimes
FindResourceW
CreateMutexW
WideCharToMultiByte
CopyFileW
SetEvent
CreateProcessW
HeapFree
CreateThread
FlushFileBuffers
lstrcpyW
GetTempFileNameW
GetTempPathW
lstrcmpiW
MultiByteToWideChar
GetVersionExW
ExpandEnvironmentStringsW
CreateEventW
SetThreadPriority
OpenProcess
GetFileSize
FindFirstFileW
HeapAlloc
WriteProcessMemory
GetCurrentProcessId
GetSystemTime
GetLocalTime
GetComputerNameW
EnterCriticalSection
SystemTimeToFileTime
SetFileTime
GetUserDefaultUILanguage
HeapReAlloc
GetProcessHeap
UnmapViewOfFile
GetLastError
MapViewOfFile
GetFileTime
WaitForSingleObject
IsBadReadPtr
CreateDirectoryW
InitializeCriticalSection
Sleep
OpenMutexW
lstrcatW
lstrlenA
FindNextFileW
lstrcatA
GetLogicalDrives
GetTimeZoneInformation
GetModuleFileNameA
ReadFile
GetModuleFileNameW
ReleaseMutex

Sections

.nkl
Size: 39KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.qxkt
Size: 2KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kter
Size: 7KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7a1c61abff0a1f78db2368e95ac9f32b

Headers

File Characteristics

Imports

user32

kernel32

Sections

.nkl Size: 39KB - Virtual size: 61KB

.qxkt Size: 2KB - Virtual size: 5KB

.kter Size: 7KB - Virtual size: 80KB

.nkl
Size: 39KB - Virtual size: 61KB

.qxkt
Size: 2KB - Virtual size: 5KB

.kter
Size: 7KB - Virtual size: 80KB