f4f387486cdbc09027f1bb05c3618b91_JaffaCakes118

General

Target

f4f387486cdbc09027f1bb05c3618b91_JaffaCakes118
Size

49KB
MD5

f4f387486cdbc09027f1bb05c3618b91
SHA1

a4baba5ec7e94adb7d303414481610982c7581cb
SHA256

a42101587fa89e12f17002eae2758d0d9f76583f19de36f56af7fe68fa1ee26e
SHA512

9ec516c016e858e204e45a67cefb474c88c7dc623e22ac308bc305f6455f2dcf646dc2cb54b03e13111c2c686761a8f6b44747bcd802ec0ff5eac084823ca467
SSDEEP

768:c3bprAkBW7XL5cNQIqxMCBbxY220tYg7nWjBRRmX8pq6TiRRE826Yz7S:c32n775cmIwM0bxNr7nWbRm6tJX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f4f387486cdbc09027f1bb05c3618b91_JaffaCakes118

Files

f4f387486cdbc09027f1bb05c3618b91_JaffaCakes118
.exe windows:5 windows x86 arch:x86

d9065ebc4191c7bdd36b1971a96127c5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ResetEvent
GetFileTime
CreateDirectoryW
GetCommandLineA
GetCurrentThreadId
GetModuleFileNameA
GetLocalTime
SetFileAttributesW
GlobalLock
GetModuleHandleA
SetThreadPriority
GlobalUnlock
EnterCriticalSection
GetVersionExW
CloseHandle
GetSystemTimeAsFileTime
HeapReAlloc
lstrcmpiA
GetTickCount
FindClose
GetFileSize
WaitForSingleObject
LeaveCriticalSection
GetCurrentProcessId
GetProcessTimes
DisconnectNamedPipe
GetSystemTime
GetExitCodeProcess
InitializeCriticalSection
WriteProcessMemory
CreateProcessW
lstrcmpiW
WideCharToMultiByte
GetUserDefaultUILanguage
CreateFileMappingW
HeapAlloc
FlushFileBuffers
GetProcessHeap
WriteFile
CopyFileW
FindNextFileW
GetFileSizeEx
lstrcatW
IsBadReadPtr
SetLastError
ReleaseMutex
Sleep
lstrcpyA
FindResourceW
FindFirstFileW
OpenProcess
MapViewOfFile
lstrcpyW
CreateMutexW
GetLastError
SetEvent
lstrlenW
HeapFree
SetFilePointer
CreateThread
GetTempFileNameW
GetLogicalDrives
GetTempPathW
ExpandEnvironmentStringsW
DeleteFileW
GetThreadPriority
GetComputerNameW
MultiByteToWideChar
CreateEventW
OpenMutexW
SetEndOfFile
SystemTimeToFileTime
lstrlenA
lstrcatA
SetFileTime
GetDriveTypeW
GetModuleFileNameW
MoveFileExW
lstrcpynW
CreateFileW
ReadFile
GetTimeZoneInformation
UnmapViewOfFile

user32

GetKeyState
GetMessageW
ToUnicode
GetWindowThreadProcessId
DispatchMessageW
GetClipboardData
GetDlgItemTextW
GetIconInfo

Sections

.rsreb
Size: 39KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vyjmh
Size: 2KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zkjar
Size: 7KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d9065ebc4191c7bdd36b1971a96127c5

Headers

File Characteristics

Imports

kernel32

user32

Sections

.rsreb Size: 39KB - Virtual size: 61KB

.vyjmh Size: 2KB - Virtual size: 5KB

.zkjar Size: 7KB - Virtual size: 80KB

.rsreb
Size: 39KB - Virtual size: 61KB

.vyjmh
Size: 2KB - Virtual size: 5KB

.zkjar
Size: 7KB - Virtual size: 80KB