fc0ddf159170fe24d05e3d8adbd51e88_JaffaCakes118

General

Target

fc0ddf159170fe24d05e3d8adbd51e88_JaffaCakes118
Size

46KB
MD5

fc0ddf159170fe24d05e3d8adbd51e88
SHA1

05e9d04c51c23cde2d15e0a24ddc39012a869c1b
SHA256

f9687876f93a99bf1c043ce568485f3a2780e29828a2bce3920a464b8631c2a6
SHA512

c154edee1f06187bcb2ea71d8fc17521ebc55240bc696e3936d82fe7633ce7cf2163e11e24a9d681843490c53e4c855b1fa729f366f940b0986732140fd8e61a
SSDEEP

768:PYazLDSytW+QR8PapR4LDjjANPMHvz9WfjN38JGioWva24H7lL4Bj3QaWWmfukD:PrD14pRkaYfj0UofjNtioc34HB4BFy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fc0ddf159170fe24d05e3d8adbd51e88_JaffaCakes118

Files

fc0ddf159170fe24d05e3d8adbd51e88_JaffaCakes118
.exe windows:5 windows x86 arch:x86

d425fdaab84644a378686cc2f2197c67

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DispatchMessageW
GetDlgItemTextA
FindWindowExW
CharLowerBuffA
GetIconInfo
SendMessageW
OpenDesktopA
GetCursorPos
EndDialog
PeekMessageA
LoadCursorW
DrawIcon
GetMessageA
CloseDesktop
GetDlgItemTextW
ExitWindowsEx
SetProcessWindowStation
GetMessageW
GetWindowThreadProcessId
CloseWindowStation
MsgWaitForMultipleObjects
GetForegroundWindow
GetClipboardData
GetWindowTextW
GetDlgItem
GetKeyState
PeekMessageW
GetClassNameW
ToUnicode
GetKeyboardState
GetWindowLongW
SetThreadDesktop
OpenWindowStationA

kernel32

GetCurrentProcessId
FindNextFileW
GetVersionExW
GetProcessHeap
InitializeCriticalSection
GetExitCodeProcess
GetSystemTimeAsFileTime
LeaveCriticalSection
FlushFileBuffers
FindFirstFileW
SetThreadPriority
WaitForSingleObject
Sleep
CreateMutexW
GetUserDefaultUILanguage
SystemTimeToFileTime
lstrcmpiA
GetTempFileNameW
ExpandEnvironmentStringsW
lstrcpyW
GetCommandLineA
CreateDirectoryW
MultiByteToWideChar
UnmapViewOfFile
MoveFileExW
GetThreadPriority
CloseHandle
GetLogicalDrives
GetModuleFileNameA
lstrcpyA
GetComputerNameW
ReleaseMutex
GetFileTime
GetCurrentThreadId
CreateEventW
IsBadReadPtr
WriteFile
GlobalUnlock
GetProcessTimes
lstrlenA
FindClose
lstrcatW
DeleteFileW
GetSystemTime
GetTickCount
GetFileSize
lstrcmpiW
SetLastError
WideCharToMultiByte
SetEvent
GetTimeZoneInformation
CopyFileW
HeapAlloc
WriteProcessMemory
lstrcpynW
FindResourceW
CreateProcessW

Sections

.jmpsn
Size: 36KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.enir
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.olyr
Size: 7KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d425fdaab84644a378686cc2f2197c67

Headers

File Characteristics

Imports

user32

kernel32

Sections

.jmpsn Size: 36KB - Virtual size: 56KB

.enir Size: 1KB - Virtual size: 4KB

.olyr Size: 7KB - Virtual size: 76KB

.jmpsn
Size: 36KB - Virtual size: 56KB

.enir
Size: 1KB - Virtual size: 4KB

.olyr
Size: 7KB - Virtual size: 76KB