abacde6cd05dd6215460b9738c0945cf_JaffaCakes118

General

Target

abacde6cd05dd6215460b9738c0945cf_JaffaCakes118
Size

46KB
MD5

abacde6cd05dd6215460b9738c0945cf
SHA1

57d261466a498873f66709c27d5d0107e3766736
SHA256

8ce55524177a919d3ecd26fb9397decaf4d83cde60777e6b680259cf5cda05ab
SHA512

cc2f22cf230e266f83ca8f689e94826dfacfbb5e890aa64dd0c59fcc299efcd0f21a62b3cfd1b5d056a2bc00b7e8d78b708f006beaa7f8d081ab621a894c56b4
SSDEEP

768:3zCnzIoEXo35YixsgYOhJEB6JW/VISlJuUc/eMFM5wLRhwZN2S2GXY2n:8IoEOSihYOhXJUWUcmRURh/tG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
abacde6cd05dd6215460b9738c0945cf_JaffaCakes118

Files

abacde6cd05dd6215460b9738c0945cf_JaffaCakes118
.exe windows:5 windows x86 arch:x86

39df6f3582ae9ff4bcdaf9122e677a6e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetKeyState
EndDialog
PeekMessageA
CloseWindowStation
GetForegroundWindow
GetDlgItemTextW
FindWindowExW
SetThreadDesktop
ToUnicode
GetIconInfo
SendMessageW
ExitWindowsEx
OpenWindowStationA
GetDlgItem
GetWindowTextW
GetWindowThreadProcessId
GetMessageA
GetKeyboardState
GetClipboardData
GetDlgItemTextA
GetCursorPos
CloseDesktop
PeekMessageW
OpenDesktopA
MsgWaitForMultipleObjects
LoadCursorW
GetMessageW
DispatchMessageW
SetProcessWindowStation
GetWindowLongW
GetClassNameW
CharLowerBuffA
DrawIcon

kernel32

GetCommandLineA
GetCurrentProcessId
SetEndOfFile
UnmapViewOfFile
CloseHandle
ReleaseMutex
GetLastError
OpenMutexW
GetLogicalDrives
GetThreadPriority
SetEvent
GetProcessHeap
SystemTimeToFileTime
lstrcpyW
MultiByteToWideChar
EnterCriticalSection
GetDriveTypeW
WriteFile
ReadFile
SetFileTime
ExpandEnvironmentStringsW
DisconnectNamedPipe
SetFileAttributesW
DeleteFileW
lstrcmpiA
InitializeCriticalSection
GetExitCodeProcess
CreateDirectoryW
WriteProcessMemory
GetProcessTimes
SetThreadPriority
lstrcpynW
WideCharToMultiByte
IsBadReadPtr
GetModuleFileNameW
GetLocalTime
lstrlenA
SetFilePointer
LeaveCriticalSection
CopyFileW
ResetEvent
CreateEventW
HeapFree
CreateMutexW
GetTempPathW
GetUserDefaultUILanguage
lstrcatA
GetVersionExW
GetCurrentThreadId
FindClose
FindNextFileW
MoveFileExW
FindFirstFileW
CreateThread
lstrlenW
CreateProcessW
HeapAlloc

Sections

.ylyn
Size: 36KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.nqvyv
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vqx
Size: 7KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

39df6f3582ae9ff4bcdaf9122e677a6e

Headers

File Characteristics

Imports

user32

kernel32

Sections

.ylyn Size: 36KB - Virtual size: 56KB

.nqvyv Size: 1KB - Virtual size: 4KB

.vqx Size: 7KB - Virtual size: 76KB

.ylyn
Size: 36KB - Virtual size: 56KB

.nqvyv
Size: 1KB - Virtual size: 4KB

.vqx
Size: 7KB - Virtual size: 76KB