eb6c2c49efc34d0c40c678a05fbe073f_JaffaCakes118 | Triage

Sharing

General

Target

eb6c2c49efc34d0c40c678a05fbe073f_JaffaCakes118
Size

210KB
MD5

eb6c2c49efc34d0c40c678a05fbe073f
SHA1

244227a031a8ac86524c540b8b91e6497926137f
SHA256

fd7a8e992b4c92bbfab671a2ddbc9ea8020e1a0c42bcb3d31472c51d90dd5427
SHA512

667f9073d5d8d600bb43efec51237ba77ecfbf742d8709d94c94205027347268f69537f00b597c0b0d0db6772dec3581d521b355b89f072b412c8aeb77bbbbfd
SSDEEP

6144:mr3E8zq3mEW9d5zeRbafiIrzSrUcayL/xd:mC2h9vexaaICwcaCJd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
eb6c2c49efc34d0c40c678a05fbe073f_JaffaCakes118

Files

eb6c2c49efc34d0c40c678a05fbe073f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

27428da4f85ccb3caf3db3544b0a301b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
WaitForSingleObject
CompareFileTime
SuspendThread
InterlockedExchange
VirtualProtect
WaitForMultipleObjects
CloseHandle
GetConsoleCP
lstrlenA
HeapReAlloc
GetTickCount
GetCommandLineA
GetSystemDefaultLangID
LoadLibraryExW
GlobalUnlock
HeapCreate
GetStdHandle
GetVersion
AddAtomA
GetProfileIntA

user32

DragObject
DispatchMessageA
DrawCaption
InsertMenuA
GetKeyState
SetWindowPos
CreateCursor
CreateIcon
CreateCaret
CopyRect
CopyImage
SetScrollInfo
FindWindowA
IsDialogMessage
CreateMenu
EnableScrollBar
GetKeyboardLayout
SetPropA
DialogBoxParamA
GetCursorInfo
DestroyMenu
InvertRect
MessageBoxA
GetDlgItem

advapi32

RegEnumKeyA
RegCloseKey
RegEnumValueA
RegQueryInfoKeyA
RegCreateKeyExA

apphelp

GetPermLayers

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 548KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ