163ad78f1459c18d3e9f0266cb2228ae_JaffaCakes118

General

Target

163ad78f1459c18d3e9f0266cb2228ae_JaffaCakes118
Size

4.5MB
MD5

163ad78f1459c18d3e9f0266cb2228ae
SHA1

5bd6cf89564adbe4cb6c3cbd906b4666a52c2ae8
SHA256

38e04bda8e8e20457eaae501a14b67e388d7bebc9238d08b6bb118e8430e38d6
SHA512

327afd811abf0cf4f84aa3090ac5c2ffc96932580cb1eb9fdb883e54d1ab0afd0498f850bdce7c6661283502a50108bb82c442d8eb4fb38b24a573e788da5299
SSDEEP

98304:KUX+FTQT5V+1Y9qXUY54hfJEHCKYSTU+aeqLw54wb3rITdMff:KUX+Gl9yDKhfLSoxw54wj6SH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
163ad78f1459c18d3e9f0266cb2228ae_JaffaCakes118

Files

163ad78f1459c18d3e9f0266cb2228ae_JaffaCakes118
.exe windows:5 windows x86 arch:x86

88bf30a414bab9f3e5b6e6abbefd0483

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetThreadPriority
SystemTimeToFileTime
SetFilePointer
GetCPInfo
GetCalendarInfoA
CreateEventA
GetSystemWindowsDirectoryA
GlobalUnlock
GetThreadPriorityBoost
GetEnvironmentVariableA
FillConsoleOutputCharacterW
MulDiv
GetTapePosition
QueryInformationJobObject
GlobalCompact
GetFileAttributesExA
GetThreadSelectorEntry
DuplicateHandle
GetVersionExA
CreateSocketHandle
MoveFileWithProgressA
GlobalDeleteAtom
SetDefaultCommConfigA
WriteConsoleOutputAttribute
GlobalDeleteAtom
OpenSemaphoreA
IsBadStringPtrA
GlobalLock
_hread
GetDriveTypeA
EnumResourceLanguagesA
GetSystemDirectoryA
GetConsoleMode
lstrcmpiA
VirtualAlloc
GetPrivateProfileStructA
FlushFileBuffers
IsBadWritePtr
RegisterWaitForInputIdle
GlobalUnWire
HeapFree
IsDebuggerPresent
SetFilePointerEx
FindResourceExA

user32

DrawTextExW
PackDDElParam
GetMenuStringA
CreateIconFromResourceEx
GetDC
DisplayExitWindowsWarnings
GetRawInputDeviceInfoA
SetWindowPos
GetWindowTextA
LoadKeyboardLayoutEx
GetMonitorInfoA
GrayStringA
FreeDDElParam
SetShellWindowEx
EnumPropsA
SetLayeredWindowAttributes
ChildWindowFromPoint
GetRawInputDeviceList
DefWindowProcA
SetPropA
SetLayeredWindowAttributes
CreateCaret
CreateMenu
GetClipCursor
GetOpenClipboardWindow
RegisterClassA
DestroyWindow
SetClassLongA
GetKeyState
SetFocus
SendMessageTimeoutA
GetMessageExtraInfo
LoadStringA
InvalidateRect
GetKeyboardLayout

Exports

Exports

Kpxsfsc
Indintaad
SetEyronatmf
Xgynjimhj
ReadEbtrctkln
Raikigmv
Igoyvefbqo
Bigptkscgej
SetKwhwvuwfifq
Vleinwis
Trenuvsc
Ybcfgkdcir
SetNalwoxgl
Qbogchxbrnj
Caxumko
Ovnmmslfse
CloseKkudkfj
CloseFfkxtpyeuy
CloseViwbotiqjmu
ReadXdtjegu

Sections

.text
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 3.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

88bf30a414bab9f3e5b6e6abbefd0483

Headers

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

.text Size: 2.7MB - Virtual size: 2.7MB

.idata Size: 2KB - Virtual size: 3.7MB

.rsrc Size: 1.8MB - Virtual size: 1.8MB

.text
Size: 2.7MB - Virtual size: 2.7MB

.idata
Size: 2KB - Virtual size: 3.7MB

.rsrc
Size: 1.8MB - Virtual size: 1.8MB