5afffb7a3daff890acc4d99224597d87_JaffaCakes118

General

Target

5afffb7a3daff890acc4d99224597d87_JaffaCakes118
Size

46KB
MD5

5afffb7a3daff890acc4d99224597d87
SHA1

123a3c5ca60d276c285ea81d9ed42506d45c9fa9
SHA256

56cbdd28ae42d531cb94b921fe6e412a0e0b44871fd5dd400690c73c1bcf2cb1
SHA512

5d2f15826e732674a9526242242ac64b967ec4221cbd12925c5bf6a1826ca82affb81e635821ea71f0b9a38885b225bc6d49f5a5d9c979e0928c6b556b8135c4
SSDEEP

768:TH+5EFAsvughRvMJldmAgdbBERoAwzVhIZdgTH0gB5aoqIzXmXKvf56E+WRXnOPm:TouACuivMJlNgtBqoAqVhIjY/5aoq0m9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5afffb7a3daff890acc4d99224597d87_JaffaCakes118

Files

5afffb7a3daff890acc4d99224597d87_JaffaCakes118
.exe windows:5 windows x86 arch:x86

498b124bb81656f126194eb205289c69

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindClose
ReleaseMutex
SetThreadPriority
CloseHandle
MapViewOfFile
SetLastError
WriteProcessMemory
FlushFileBuffers
WaitForSingleObject
SystemTimeToFileTime
GetFileTime
IsBadReadPtr
GlobalLock
lstrcatA
lstrcpyA
GetVersionExW
InitializeCriticalSection
SetFileAttributesW
GetFileSizeEx
ReadFile
Sleep
GetSystemTimeAsFileTime
SetFilePointer
GetTempPathW
FindNextFileW
UnmapViewOfFile
ResetEvent
GetDriveTypeW
GetModuleHandleA
GetModuleFileNameW
CreateDirectoryW
GetProcessHeap
GetUserDefaultUILanguage
HeapFree
GetCurrentProcessId
CreateMutexW
lstrcatW
SetEvent
LeaveCriticalSection
GetProcessTimes
SetFileTime
ExpandEnvironmentStringsW
OpenProcess
MoveFileExW
OpenMutexW
GetLastError
EnterCriticalSection
GetTickCount
lstrcmpiA
GetLogicalDrives
FindResourceW
GetTimeZoneInformation
lstrlenA
HeapReAlloc
WideCharToMultiByte
GlobalUnlock
HeapAlloc
GetComputerNameW
CreateEventW
CreateFileMappingW
lstrcpynW
GetThreadPriority
lstrlenW
CreateFileW
GetCommandLineA
DeleteFileW
WriteFile
SetEndOfFile
GetTempFileNameW
lstrcmpiW
CopyFileW
MultiByteToWideChar
lstrcpyW
CreateProcessW
GetFileSize
GetCurrentThreadId
GetModuleFileNameA
FindFirstFileW
DisconnectNamedPipe
CreateThread
GetLocalTime
GetSystemTime
GetExitCodeProcess

user32

GetForegroundWindow
SetThreadDesktop
DispatchMessageW
GetIconInfo
SendMessageW
ToUnicode
CloseWindowStation
MsgWaitForMultipleObjects

Sections

.iborgh
Size: 36KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.nqx
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fcjej
Size: 7KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

498b124bb81656f126194eb205289c69

Headers

File Characteristics

Imports

kernel32

user32

Sections

.iborgh Size: 36KB - Virtual size: 56KB

.nqx Size: 2KB - Virtual size: 4KB

.fcjej Size: 7KB - Virtual size: 76KB

.iborgh
Size: 36KB - Virtual size: 56KB

.nqx
Size: 2KB - Virtual size: 4KB

.fcjej
Size: 7KB - Virtual size: 76KB