3d3dfc0e60242e0fd269618a64bee686_JaffaCakes118

General

Target

3d3dfc0e60242e0fd269618a64bee686_JaffaCakes118
Size

45KB
MD5

3d3dfc0e60242e0fd269618a64bee686
SHA1

ec878bb9eb03c5483b20141e7f045e99fe07950a
SHA256

61f4ea34626abb6b109b07f8c0f2ff3b452fe7f52e2036b2968fedf23c0fc96c
SHA512

5c4c4b0e3736b60c6b14f870b012a2524ac5380dad15fa2ffe3c76a0aa569bcdc5b41bc0c5e0c21adb20552596cf8ad8acfa5b5a762e2fc5817306683b31078e
SSDEEP

768:KJMGU7zB7qAIWuEmYQ7kM7teBiLQpx1cu8boABVHqTarK9iCZ+TqWh+T0WN85ExP:KJW7zB7MWO7tedxCkXHZ+eW4TlHhX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3d3dfc0e60242e0fd269618a64bee686_JaffaCakes118

Files

3d3dfc0e60242e0fd269618a64bee686_JaffaCakes118
.exe windows:5 windows x86 arch:x86

910155b4c2f7897cfd1565f36f6d92ef

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DispatchMessageW
PeekMessageW
GetMessageW
CharLowerBuffA
SetThreadDesktop
GetKeyboardState
ToUnicode
CloseWindowStation
GetDlgItemTextW
DrawIcon
ExitWindowsEx
SetProcessWindowStation
GetClipboardData
GetCursorPos
GetWindowLongW
FindWindowExW
CloseDesktop
SendMessageW
GetDlgItemTextA
PeekMessageA
GetClassNameW
GetKeyState
MsgWaitForMultipleObjects
OpenDesktopA
GetWindowThreadProcessId
LoadCursorW
OpenWindowStationA
EndDialog
GetWindowTextW
GetIconInfo
GetDlgItem
GetForegroundWindow
GetMessageA

kernel32

lstrlenW
IsBadReadPtr
OpenMutexW
WriteFile
WriteProcessMemory
SetFileTime
CreateEventW
GetProcessTimes
SetEvent
Sleep
GetModuleFileNameW
GetModuleHandleA
UnmapViewOfFile
GetLogicalDrives
GetSystemTime
GetLocalTime
HeapAlloc
HeapFree
GetModuleFileNameA
lstrcmpiA
ReadFile
GetLastError
CreateMutexW
CopyFileW
GetProcessHeap
SetEndOfFile
lstrcpyA
SetFilePointer
MultiByteToWideChar
GlobalUnlock
lstrcpyW
GetCurrentThreadId
lstrlenA
GetFileSizeEx
GetCurrentProcessId
ReleaseMutex
GetTempFileNameW
lstrcmpiW
GetSystemTimeAsFileTime
GetComputerNameW
GetTickCount
GetTempPathW
lstrcatW
CreateProcessW
ExpandEnvironmentStringsW
MapViewOfFile
GetTimeZoneInformation
WaitForSingleObject
LeaveCriticalSection
DisconnectNamedPipe
WideCharToMultiByte
SetFileAttributesW
lstrcatA
CreateFileMappingW
EnterCriticalSection
GetUserDefaultUILanguage
SystemTimeToFileTime
GetExitCodeProcess

Sections

.qjoj
Size: 36KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.qdsnal
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ebox
Size: 7KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

910155b4c2f7897cfd1565f36f6d92ef

Headers

File Characteristics

Imports

user32

kernel32

Sections

.qjoj Size: 36KB - Virtual size: 56KB

.qdsnal Size: 1KB - Virtual size: 4KB

.ebox Size: 7KB - Virtual size: 76KB

.qjoj
Size: 36KB - Virtual size: 56KB

.qdsnal
Size: 1KB - Virtual size: 4KB

.ebox
Size: 7KB - Virtual size: 76KB