b26119fc088c40d15a8ea84d3d20e55b_JaffaCakes118

General

Target

b26119fc088c40d15a8ea84d3d20e55b_JaffaCakes118
Size

49KB
MD5

b26119fc088c40d15a8ea84d3d20e55b
SHA1

f8c896991560da231694e7aca131ada96f251397
SHA256

194881e31486bd2637bb0b1992426436f0571546e8e4e272622f5c3f81bf2505
SHA512

bc2ce0a47bbd257a6bfdfd17a03036708b79120abf3b7052656f882439d42c9be01ca9766f95a543907978772d27dc008c8f9ec15c36da86d2edc64ab7d56c3d
SSDEEP

768:ibfx22IqyhW2+jtTvHFOnfgPq5c+Vt7to42xlx51w6LitdMzzu/Pz0:KfxEN2jtblO65J42xlx5yDtazZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b26119fc088c40d15a8ea84d3d20e55b_JaffaCakes118

Files

b26119fc088c40d15a8ea84d3d20e55b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

73a6ecdc2e156e56ca31669f23645285

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ExitWindowsEx
GetWindowThreadProcessId
GetWindowTextW
GetClipboardData
CharLowerBuffA
PeekMessageA
CloseWindowStation
GetKeyboardState
MsgWaitForMultipleObjects
LoadCursorW
GetClassNameW
GetDlgItem
GetDlgItemTextA
OpenWindowStationA
DispatchMessageW
PeekMessageW
CloseDesktop
OpenDesktopA
SetThreadDesktop
GetKeyState
FindWindowExW
SetProcessWindowStation
GetIconInfo
GetCursorPos
GetDlgItemTextW
DrawIcon
SendMessageW
GetMessageA
ToUnicode
GetWindowLongW
GetForegroundWindow
GetMessageW
EndDialog

kernel32

EnterCriticalSection
GetTempPathW
GetModuleFileNameW
LeaveCriticalSection
Sleep
lstrcmpiW
SetFileAttributesW
lstrcatW
GetExitCodeProcess
WideCharToMultiByte
GetDriveTypeW
GetProcessHeap
GetTickCount
CreateDirectoryW
FlushFileBuffers
HeapFree
ExpandEnvironmentStringsW
CloseHandle
GetSystemTimeAsFileTime
GetCurrentProcessId
GetUserDefaultUILanguage
FindResourceW
GetComputerNameW
GetTimeZoneInformation
SetEndOfFile
UnmapViewOfFile
CreateEventW
GlobalLock
GetTempFileNameW
GetSystemTime
WriteProcessMemory
SetLastError
OpenMutexW
GetCurrentThreadId
lstrcpynW
FindFirstFileW
HeapReAlloc
GetModuleFileNameA
lstrcpyW
CopyFileW
CreateMutexW
lstrcatA
SystemTimeToFileTime
InitializeCriticalSection
lstrlenA
GetFileSize
GetFileTime
DeleteFileW
GetThreadPriority
GetModuleHandleA
FindClose
SetFileTime
CreateFileMappingW
MoveFileExW
GetCommandLineA
GetVersionExW
GetLogicalDrives

Sections

.net
Size: 39KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.zytqb
Size: 2KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lox
Size: 7KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

73a6ecdc2e156e56ca31669f23645285

Headers

File Characteristics

Imports

user32

kernel32

Sections

.net Size: 39KB - Virtual size: 61KB

.zytqb Size: 2KB - Virtual size: 5KB

.lox Size: 7KB - Virtual size: 80KB

.net
Size: 39KB - Virtual size: 61KB

.zytqb
Size: 2KB - Virtual size: 5KB

.lox
Size: 7KB - Virtual size: 80KB