bc37fcb5b3c4740f964692d4fd817aaa_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

bc37fcb5b3c4740f964692d4fd817aaa_JaffaCakes118
Size

53KB
MD5

bc37fcb5b3c4740f964692d4fd817aaa
SHA1

9e9955e3c4805be98261a2e9244bfa5ec6be6a31
SHA256

4b4e128f41c1b3d97285ab475c8f1855d2c69f6eedc1b3506c14b0695f376885
SHA512

8d757359e5018594227b073deca4f330cbafdcab28c71caabc476a9c0a7e2a6bb053698f63022d75233ea9992e4774e20b335b4a1ee9dd73e89c917590ad8a5f
SSDEEP

768:8DL4mMlfaZiHd4gnBLpd0mYXbU/3FKmZJCl0iB+JVfmIkTl8w4g9VqcfFXWjw4i:av6f+iHCgBVSm0uFtClVWVuIeljvH6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bc37fcb5b3c4740f964692d4fd817aaa_JaffaCakes118

Files

bc37fcb5b3c4740f964692d4fd817aaa_JaffaCakes118
.exe windows:5 windows x86 arch:x86

4cc709c176b7f4f1c852ca8ab65679fd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetClipboardData
GetCursorPos
GetKeyboardState
GetKeyState
DrawIcon
ToUnicode
EndDialog
CharLowerBuffA
DispatchMessageW
SetProcessWindowStation
GetIconInfo
GetWindowTextW
SetThreadDesktop
GetForegroundWindow
FindWindowExW
OpenDesktopA
GetClassNameW
CloseWindowStation
CloseDesktop
GetDlgItemTextW
GetMessageA
GetDlgItem
OpenWindowStationA
GetDlgItemTextA
SendMessageW
PeekMessageW
GetWindowLongW
PeekMessageA
GetWindowThreadProcessId
MsgWaitForMultipleObjects
GetMessageW
ExitWindowsEx
LoadCursorW

kernel32

UnmapViewOfFile
GetFileSize
SetFileTime
WideCharToMultiByte
lstrcpyA
Sleep
CreateDirectoryW
HeapReAlloc
lstrlenW
CreateEventW
GetUserDefaultUILanguage
GetModuleFileNameA
lstrlenA
GetProcessHeap
MapViewOfFile
FindFirstFileW
lstrcatW
OpenProcess
lstrcmpiW
GetExitCodeProcess
GetTempFileNameW
GetFileSizeEx
CloseHandle
ReadFile
GetTimeZoneInformation
GetModuleHandleA
lstrcpyW
ReleaseMutex
HeapFree
CreateMutexW
GlobalUnlock
SetLastError
SetFileAttributesW
CreateProcessW
GetLocalTime
GetSystemTimeAsFileTime
FlushFileBuffers
CreateThread
OpenMutexW
MultiByteToWideChar
GetTickCount
WaitForSingleObject
MoveFileExW
FindClose
SetEvent
GetLogicalDrives
GetLastError
lstrcpynW
IsBadReadPtr
GetProcessTimes
lstrcatA
GetComputerNameW
DisconnectNamedPipe
GetCurrentProcessId
FindResourceW
HeapAlloc
CreateFileW

Sections

.vgncn
Size: 18KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bqd
Size: 5KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.jyh
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.qtyjiz
Size: 26KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4cc709c176b7f4f1c852ca8ab65679fd

Headers

File Characteristics

Imports

user32

kernel32

Sections

.vgncn Size: 18KB - Virtual size: 39KB

.bqd Size: 5KB - Virtual size: 10KB

.jyh Size: 1024B - Virtual size: 1KB

.qtyjiz Size: 26KB - Virtual size: 132KB

.rsrc Size: 1KB - Virtual size: 4KB

.vgncn
Size: 18KB - Virtual size: 39KB

.bqd
Size: 5KB - Virtual size: 10KB

.jyh
Size: 1024B - Virtual size: 1KB

.qtyjiz
Size: 26KB - Virtual size: 132KB

.rsrc
Size: 1KB - Virtual size: 4KB