869b8af4a49703db301e0c3bb3803f1f_JaffaCakes118

General

Target

869b8af4a49703db301e0c3bb3803f1f_JaffaCakes118
Size

46KB
MD5

869b8af4a49703db301e0c3bb3803f1f
SHA1

95a9044cc15860c38b7983671210dc45298f0720
SHA256

ce152b186f08a1b19de55b9af5f5741bf6a8b0f4c486d62825e2a03dd947edcd
SHA512

f8aefa9759d40c725fa408f5924ff5e3b2fea358245fd4045ded81567179a445f26aba119cd0077cdc03c464ad5cf51ef07061dba4fa019955964989aacda8e7
SSDEEP

768:NV0YVXZya23zx9d2ZJkpa+TpGzdpcQm8zRcbWfJjkZd//ciR9G4:b03zx9IDcNpGzdHm8Nsxc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
869b8af4a49703db301e0c3bb3803f1f_JaffaCakes118

Files

869b8af4a49703db301e0c3bb3803f1f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

4489ee51ea95ed278f4742cc9a654509

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetThreadDesktop
CharLowerBuffA
GetMessageA
PeekMessageW
GetDlgItemTextA
EndDialog
OpenDesktopA
GetWindowThreadProcessId
GetWindowTextW
ToUnicode
CloseDesktop
GetClipboardData
DrawIcon
GetKeyboardState
GetKeyState
PeekMessageA
GetCursorPos
FindWindowExW
GetDlgItem
ExitWindowsEx
CloseWindowStation
GetForegroundWindow
LoadCursorW
SendMessageW
GetIconInfo
GetWindowLongW
GetDlgItemTextW
GetClassNameW
OpenWindowStationA
GetMessageW
SetProcessWindowStation
MsgWaitForMultipleObjects
DispatchMessageW

kernel32

lstrcpynW
ResetEvent
WriteFile
GlobalUnlock
FlushFileBuffers
IsBadReadPtr
GetLastError
GetThreadPriority
lstrcpyW
GetComputerNameW
DisconnectNamedPipe
GetModuleFileNameW
EnterCriticalSection
CreateProcessW
FindFirstFileW
CopyFileW
GetFileSizeEx
GetLocalTime
LeaveCriticalSection
CreateFileMappingW
WriteProcessMemory
GetCurrentThreadId
OpenMutexW
lstrcmpiW
GetSystemTime
ExpandEnvironmentStringsW
GetDriveTypeW
MoveFileExW
MultiByteToWideChar
HeapAlloc
GetTimeZoneInformation
UnmapViewOfFile
ReadFile
GetModuleHandleA
GetCurrentProcessId
GetExitCodeProcess
GetFileTime
MapViewOfFile
SetFileTime
CreateFileW
GetVersionExW
GetModuleFileNameA
CreateEventW
lstrcatW
HeapFree
GetTempFileNameW
SetEndOfFile
HeapReAlloc
lstrcpyA
lstrcmpiA
GetTickCount
ReleaseMutex
SetLastError
WaitForSingleObject
GetSystemTimeAsFileTime
lstrlenW
InitializeCriticalSection

Sections

.zcfgv
Size: 36KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.viryl
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xixsj
Size: 7KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4489ee51ea95ed278f4742cc9a654509

Headers

File Characteristics

Imports

user32

kernel32

Sections

.zcfgv Size: 36KB - Virtual size: 56KB

.viryl Size: 2KB - Virtual size: 4KB

.xixsj Size: 7KB - Virtual size: 76KB

.zcfgv
Size: 36KB - Virtual size: 56KB

.viryl
Size: 2KB - Virtual size: 4KB

.xixsj
Size: 7KB - Virtual size: 76KB