b20c03fd08e1e2cde48eea2f8d238a5b_JaffaCakes118

General

Target

b20c03fd08e1e2cde48eea2f8d238a5b_JaffaCakes118
Size

46KB
MD5

b20c03fd08e1e2cde48eea2f8d238a5b
SHA1

be31a8097fdf4d773d9c32290d04b8cbe51a569b
SHA256

23823bc3c37ca0837d4e2ae64117bfe9002071f246c1352667db3b6a6bac40b0
SHA512

51b8784d931364f4cd5d4a3aa05027108018cc0803c07abef9bf40cdc3e1d67a2116c89c2c5a8353b8cb93309fa4b80d43281ecd93b9de92a6f7a793bd918b42
SSDEEP

768:EiOUqXMhIo45ix3VsSfkAXSPz2THnbSXFqoQyelc/YLI0KnJO2KHV54jhpbAUtrG:Et38hIoi0mSfkAX2z2oFrQH2wM0D2KHw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b20c03fd08e1e2cde48eea2f8d238a5b_JaffaCakes118

Files

b20c03fd08e1e2cde48eea2f8d238a5b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

bff71c630fd1453fa79a4792c48b3a03

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetForegroundWindow
DrawIcon
EndDialog
PeekMessageW
GetIconInfo
GetWindowTextW
CloseDesktop
GetClipboardData
CharLowerBuffA
MsgWaitForMultipleObjects
GetWindowLongW
GetWindowThreadProcessId
GetMessageW
GetKeyboardState
GetMessageA
SendMessageW
PeekMessageA
FindWindowExW
GetKeyState
ExitWindowsEx
OpenDesktopA
GetDlgItemTextA
CloseWindowStation
GetDlgItem
OpenWindowStationA
DispatchMessageW
GetCursorPos
SetProcessWindowStation
SetThreadDesktop
ToUnicode
GetClassNameW
LoadCursorW
GetDlgItemTextW

kernel32

MultiByteToWideChar
Sleep
lstrcmpiA
GetFileSize
DeleteFileW
FlushFileBuffers
OpenMutexW
HeapFree
SetEndOfFile
OpenProcess
GetCurrentProcessId
GetTickCount
CloseHandle
ReleaseMutex
GetModuleFileNameW
GetTempFileNameW
HeapReAlloc
SetLastError
SetEvent
CreateProcessW
GetCurrentThreadId
GetLocalTime
GetLastError
GetSystemTime
GetProcessHeap
GetLogicalDrives
GetFileSizeEx
GetTimeZoneInformation
lstrcatA
SetFileAttributesW
CreateThread
GetCommandLineA
lstrcmpiW
IsBadReadPtr
DisconnectNamedPipe
FindResourceW
CopyFileW
WideCharToMultiByte
ExpandEnvironmentStringsW
GetModuleHandleA
InitializeCriticalSection
MapViewOfFile
ReadFile
GlobalLock
GetUserDefaultUILanguage
SetThreadPriority
WriteFile
UnmapViewOfFile
lstrlenA
ResetEvent
GetSystemTimeAsFileTime
lstrcpyA
SystemTimeToFileTime
MoveFileExW
SetFileTime
SetFilePointer
LeaveCriticalSection

Sections

.vypqb
Size: 36KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.jkpml
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.wvanil
Size: 7KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bff71c630fd1453fa79a4792c48b3a03

Headers

File Characteristics

Imports

user32

kernel32

Sections

.vypqb Size: 36KB - Virtual size: 56KB

.jkpml Size: 1KB - Virtual size: 4KB

.wvanil Size: 7KB - Virtual size: 76KB

.vypqb
Size: 36KB - Virtual size: 56KB

.jkpml
Size: 1KB - Virtual size: 4KB

.wvanil
Size: 7KB - Virtual size: 76KB