5f3ef8c92528d1e9c275e0fbfef9c5cc_JaffaCakes118

General

Target

5f3ef8c92528d1e9c275e0fbfef9c5cc_JaffaCakes118
Size

46KB
MD5

5f3ef8c92528d1e9c275e0fbfef9c5cc
SHA1

12299e98426fc51308745d2b6d7de44adc63c5fd
SHA256

a54194650f2273da101427e09c6d8aa5e4f18da90e750ebc49a62a46cf07a625
SHA512

9ebff02eafd71ad007220d25850efcdffc9868df34b734885e1d443c15bb8791751eb9e0e39bbe628489ad0939b6144858fc6b48dd4b2096669cda66da5a240d
SSDEEP

768:RmDn2xwxsPdh5w7QQFkiWik1TH104lj1hUphMm8NeKx334Dn5FVixzDdAMjwZ:SnuV47QQFkvTBHmg16MmlKp34DMFDdJj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5f3ef8c92528d1e9c275e0fbfef9c5cc_JaffaCakes118

Files

5f3ef8c92528d1e9c275e0fbfef9c5cc_JaffaCakes118
.exe windows:5 windows x86 arch:x86

06c2c04fde6f795bca056da76169307b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CloseWindowStation
CharLowerBuffA
GetWindowThreadProcessId
PeekMessageW
GetMessageA
GetWindowLongW
LoadCursorW
GetMessageW
DrawIcon
GetKeyboardState
GetForegroundWindow
GetClipboardData
GetCursorPos
SetProcessWindowStation
GetIconInfo
GetWindowTextW
OpenDesktopA
EndDialog
SetThreadDesktop
GetKeyState
ToUnicode
GetClassNameW
FindWindowExW
PeekMessageA
ExitWindowsEx
GetDlgItemTextA
OpenWindowStationA
CloseDesktop
GetDlgItem
GetDlgItemTextW
MsgWaitForMultipleObjects
SendMessageW
DispatchMessageW

kernel32

GetProcessHeap
lstrcmpiA
GetDriveTypeW
lstrcatA
DeleteFileW
lstrcpyW
GlobalUnlock
FindFirstFileW
GetModuleFileNameW
CloseHandle
GetFileSize
CreateDirectoryW
GetLastError
WriteProcessMemory
GlobalLock
lstrlenA
GetProcessTimes
lstrcmpiW
ResetEvent
GetExitCodeProcess
GetLocalTime
GetLogicalDrives
GetTimeZoneInformation
lstrlenW
MapViewOfFile
GetTempFileNameW
SetThreadPriority
GetFileSizeEx
IsBadReadPtr
GetModuleHandleA
ReleaseMutex
GetVersionExW
GetComputerNameW
GetCurrentProcessId
ReadFile
CreateFileW
SetEvent
lstrcatW
CreateEventW
GetCommandLineA
CreateThread
GetSystemTimeAsFileTime
OpenMutexW
OpenProcess
SetFilePointer
CopyFileW
HeapReAlloc
SetFileAttributesW
EnterCriticalSection
WaitForSingleObject
CreateMutexW
SetLastError
GetFileTime
GetTempPathW
WideCharToMultiByte
lstrcpyA
FindClose

Sections

.xspur
Size: 36KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rqt
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.poz
Size: 7KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

06c2c04fde6f795bca056da76169307b

Headers

File Characteristics

Imports

user32

kernel32

Sections

.xspur Size: 36KB - Virtual size: 56KB

.rqt Size: 1KB - Virtual size: 4KB

.poz Size: 7KB - Virtual size: 76KB

.xspur
Size: 36KB - Virtual size: 56KB

.rqt
Size: 1KB - Virtual size: 4KB

.poz
Size: 7KB - Virtual size: 76KB