ef54d968a0cd250e3ffd74ba96d62200_JaffaCakes118

General

Target

ef54d968a0cd250e3ffd74ba96d62200_JaffaCakes118
Size

49KB
MD5

ef54d968a0cd250e3ffd74ba96d62200
SHA1

d43ec176ebd8612a57ce33100f61a893f8b214d9
SHA256

b361367f2a5814df99c9edaf4a3708df8192c1e0f306e880748ddfb2ccdc82ae
SHA512

f5738d4f9d7612d64a7e07a22b2acb9d8e77a3f9de19de40da5829e8c4ffb5484dd3be832d946bc75d2e44a7ef39ef09676a85e6b069d8339610648892bf5beb
SSDEEP

768:lZw4xtXVvExAYlPxGMO2FtDBe0ZeW+FKhHQdomhTOW1r8RNKfKP2Z4EvB1piqnVc:lZw4xpV8xBl5TFreUevIS7o6dZ4U

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ef54d968a0cd250e3ffd74ba96d62200_JaffaCakes118

Files

ef54d968a0cd250e3ffd74ba96d62200_JaffaCakes118
.exe windows:5 windows x86 arch:x86

c723a7aae889a1046bf7ba6f111b1dd5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFilePointer
GetCurrentProcessId
DisconnectNamedPipe
GetTickCount
GetModuleFileNameW
lstrcmpiW
GetSystemTimeAsFileTime
GetTempPathW
GetModuleHandleA
WriteProcessMemory
GetThreadPriority
WaitForSingleObject
GetLocalTime
GetProcessTimes
IsBadReadPtr
GetDriveTypeW
GetVersionExW
GetLogicalDrives
GetModuleFileNameA
CreateEventW
DeleteFileW
FindFirstFileW
GetFileSizeEx
CreateProcessW
SetEvent
GetSystemTime
GetTempFileNameW
FlushFileBuffers
GetExitCodeProcess
CreateMutexW
InitializeCriticalSection
lstrlenA
ReadFile
CloseHandle
lstrlenW
Sleep
ExpandEnvironmentStringsW
GetComputerNameW
HeapAlloc
lstrcpynW
GetUserDefaultUILanguage
GlobalUnlock
CopyFileW
GetCommandLineA
GetTimeZoneInformation
GetCurrentThreadId
CreateThread
SetLastError
lstrcatA
MapViewOfFile
lstrcatW
SetFileAttributesW
GetFileTime
FindClose
OpenProcess
OpenMutexW
WideCharToMultiByte
lstrcpyA
GetLastError
SetThreadPriority
HeapReAlloc
GlobalLock
lstrcmpiA
GetProcessHeap
SetEndOfFile
WriteFile
GetFileSize
UnmapViewOfFile
SystemTimeToFileTime
FindResourceW
CreateFileW
lstrcpyW
FindNextFileW
ResetEvent
MoveFileExW
SetFileTime
CreateFileMappingW
CreateDirectoryW
HeapFree
LeaveCriticalSection
EnterCriticalSection
MultiByteToWideChar
ReleaseMutex

user32

FindWindowExW
MsgWaitForMultipleObjects
CloseDesktop
GetDlgItemTextA
ToUnicode
DrawIcon
CharLowerBuffA
EndDialog

Sections

.dkhkz
Size: 39KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edgb
Size: 2KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dktqh
Size: 7KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c723a7aae889a1046bf7ba6f111b1dd5

Headers

File Characteristics

Imports

kernel32

user32

Sections

.dkhkz Size: 39KB - Virtual size: 61KB

.edgb Size: 2KB - Virtual size: 5KB

.dktqh Size: 7KB - Virtual size: 80KB

.dkhkz
Size: 39KB - Virtual size: 61KB

.edgb
Size: 2KB - Virtual size: 5KB

.dktqh
Size: 7KB - Virtual size: 80KB