7739f5d1555a99fa49eedc88041e7868_JaffaCakes118

General

Target

7739f5d1555a99fa49eedc88041e7868_JaffaCakes118
Size

49KB
MD5

7739f5d1555a99fa49eedc88041e7868
SHA1

84f2f7c3fb7993d09401d859b3374e6dc23e6f61
SHA256

13aeb3434f6059e36a269c4deffd3778618d9d15dab661ff405325fab2e4ad25
SHA512

026576266675e6c4802f8629f8f05e9bf7d76739b7bdad69ed7288b5b21eec4f49639f642cdaa36b536469f2f90bdb4533b564234b14bc8f85a2789505d5cfe8
SSDEEP

768:zP899oad+VqLL8OKxf5280AD+Vu5kEGnbwMJdeTZtgwHEr4TEOHKBNrvdJ5sJNQC:I9zouogeUuTYwMNwkr4TETB9vdvswiv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7739f5d1555a99fa49eedc88041e7868_JaffaCakes118

Files

7739f5d1555a99fa49eedc88041e7868_JaffaCakes118
.exe windows:5 windows x86 arch:x86

32e414ad6dbb978d46864dc8060a1868

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetClassNameW
GetWindowLongW
SetProcessWindowStation
MsgWaitForMultipleObjects
CharLowerBuffA
SendMessageW
ToUnicode
PeekMessageW
GetWindowTextW
GetIconInfo
SetThreadDesktop
OpenWindowStationA
GetMessageA
ExitWindowsEx
GetKeyState
EndDialog
GetWindowThreadProcessId
GetCursorPos
PeekMessageA
FindWindowExW
GetKeyboardState
OpenDesktopA
GetForegroundWindow
LoadCursorW
CloseWindowStation
CloseDesktop
DispatchMessageW
GetDlgItem
GetDlgItemTextW
DrawIcon
GetClipboardData
GetDlgItemTextA
GetMessageW

kernel32

FindClose
MultiByteToWideChar
IsBadReadPtr
GetTempFileNameW
LeaveCriticalSection
WriteFile
GetCurrentProcessId
FindFirstFileW
SetEndOfFile
GetUserDefaultUILanguage
GetModuleFileNameA
HeapAlloc
CreateEventW
GetProcessHeap
GetTickCount
lstrcatW
FlushFileBuffers
GetSystemTime
GetLocalTime
lstrcpyW
GetProcessTimes
GetTempPathW
SetLastError
CreateThread
SetFileAttributesW
GetComputerNameW
GetThreadPriority
CreateFileMappingW
FindNextFileW
WriteProcessMemory
SetEvent
ReadFile
GlobalLock
CreateFileW
DisconnectNamedPipe
lstrcatA
GetLastError
ResetEvent
GetModuleHandleA
HeapFree
lstrcpynW
SystemTimeToFileTime
WaitForSingleObject
WideCharToMultiByte
GetExitCodeProcess
GetLogicalDrives
SetFileTime
GetDriveTypeW
CloseHandle
GetCurrentThreadId
lstrcpyA
GetSystemTimeAsFileTime
FindResourceW
GetModuleFileNameW
SetThreadPriority
CopyFileW
ExpandEnvironmentStringsW

Sections

.hmngz
Size: 39KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dyl
Size: 2KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pohyb
Size: 7KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

32e414ad6dbb978d46864dc8060a1868

Headers

File Characteristics

Imports

user32

kernel32

Sections

.hmngz Size: 39KB - Virtual size: 61KB

.dyl Size: 2KB - Virtual size: 5KB

.pohyb Size: 7KB - Virtual size: 80KB

.hmngz
Size: 39KB - Virtual size: 61KB

.dyl
Size: 2KB - Virtual size: 5KB

.pohyb
Size: 7KB - Virtual size: 80KB