bb7eaf8c8c54a1dcca0452cd35899cac_JaffaCakes118

General

Target

bb7eaf8c8c54a1dcca0452cd35899cac_JaffaCakes118
Size

49KB
MD5

bb7eaf8c8c54a1dcca0452cd35899cac
SHA1

bd1d799d49135c2229a6d043f7ae8455110e2d37
SHA256

5fea0c406a2a8b98658dd5a889cda3d9164d56963e2fa9328f86dc7aacb29393
SHA512

f8896e843c427ebe7d1c03fd52c631598e8fbc9bf2a5558385feca69fbbbe3ec910b369cc83b03f878d39ad5610361c78bf13707fcfb959137174b12eb913108
SSDEEP

1536:ZCHxCUZS42jpJ0fnvNs3tKUoNkbk1+exNbf:kYUZS42kfnVsjVexV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bb7eaf8c8c54a1dcca0452cd35899cac_JaffaCakes118

Files

bb7eaf8c8c54a1dcca0452cd35899cac_JaffaCakes118
.exe windows:5 windows x86 arch:x86

54dd05c714f66fc80a9a08688f8e0b0c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindNextFileW
GetTimeZoneInformation
MultiByteToWideChar
CreateFileMappingW
Sleep
CopyFileW
SetEvent
lstrlenW
SetEndOfFile
WriteProcessMemory
GetLocalTime
FindFirstFileW
HeapAlloc
SystemTimeToFileTime
ReadFile
lstrcmpiW
FlushFileBuffers
GlobalLock
SetLastError
GetTempPathW
lstrcpynW
GetCommandLineA
OpenMutexW
CloseHandle
GetSystemTimeAsFileTime
GetModuleFileNameW
SetThreadPriority
GetProcessTimes
IsBadReadPtr
WaitForSingleObject
GlobalUnlock
GetFileSize
lstrcatA
GetLastError
GetLogicalDrives
DeleteFileW
ResetEvent
GetCurrentThreadId
EnterCriticalSection
lstrlenA
GetTempFileNameW
MoveFileExW
WideCharToMultiByte
GetFileTime
ReleaseMutex
CreateThread
GetModuleFileNameA
MapViewOfFile
SetFileAttributesW
HeapReAlloc
ExpandEnvironmentStringsW
CreateMutexW
InitializeCriticalSection
GetDriveTypeW
LeaveCriticalSection
GetSystemTime
GetThreadPriority
DisconnectNamedPipe
GetExitCodeProcess
GetProcessHeap
HeapFree
UnmapViewOfFile
GetCurrentProcessId
lstrcpyA
lstrcatW
WriteFile
OpenProcess
CreateEventW
FindResourceW
FindClose
GetComputerNameW
CreateFileW
lstrcpyW
CreateDirectoryW
GetFileSizeEx
GetModuleHandleA
CreateProcessW
GetVersionExW
SetFilePointer
GetUserDefaultUILanguage
GetTickCount
lstrcmpiA
SetFileTime

user32

CharLowerBuffA
MsgWaitForMultipleObjects
SetProcessWindowStation
EndDialog
GetWindowThreadProcessId
CloseDesktop
GetMessageA
ExitWindowsEx

Sections

.dkr
Size: 39KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xuhih
Size: 2KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bwfsl
Size: 7KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

54dd05c714f66fc80a9a08688f8e0b0c

Headers

File Characteristics

Imports

kernel32

user32

Sections

.dkr Size: 39KB - Virtual size: 61KB

.xuhih Size: 2KB - Virtual size: 5KB

.bwfsl Size: 7KB - Virtual size: 80KB

.dkr
Size: 39KB - Virtual size: 61KB

.xuhih
Size: 2KB - Virtual size: 5KB

.bwfsl
Size: 7KB - Virtual size: 80KB