f1d5be4c28c2b90b2b5dd924b80e1817_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f1d5be4c28c2b90b2b5dd924b80e1817_JaffaCakes118
Size

248KB
MD5

f1d5be4c28c2b90b2b5dd924b80e1817
SHA1

7668eaa185444dca882fa3bc2a1a0df5ddb56144
SHA256

7c0672420b8aa062ffc2b55fb0fd0bc4c7c39a027f02a9efef1f1c8cd234f990
SHA512

5d0fc2974d521f92e2056114e94fdbfa08130af0bd755d31d81e126f2c08bfa1b5b4d0ba10b690d58ada92e6be92c80274f5c86a43b9d7cdcc013d80be573d5e
SSDEEP

6144:uRrSgzvk3hhq+Ey3u2AljYoUSFjgt4ZZGY+z0fk/tW7MrZ:uRLoO+H3UO3Y+zM0oMl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f1d5be4c28c2b90b2b5dd924b80e1817_JaffaCakes118

Files

f1d5be4c28c2b90b2b5dd924b80e1817_JaffaCakes118
.exe windows:4 windows x86 arch:x86

07e064b787c44bd4c1552b2d21bae0da

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrencyFormatA
GetNumberFormatA
GetHandleInformation
GetSystemInfo
_lopen
GlobalUnlock
SetSystemPowerState
GetConsoleCursorInfo
SetConsoleScreenBufferSize
GetSystemWindowsDirectoryA
CreateTapePartition
CopyFileW
VerLanguageNameA

user32

SetCaretPos
DdeCreateDataHandle
CharPrevExA
SetWindowContextHelpId
CheckMenuItem
MapWindowPoints
ScrollWindowEx
ArrangeIconicWindows
DrawTextA
IsZoomed
TrackPopupMenuEx
GetPropW
SendMessageA
RemoveMenu

gdi32

PolyBezier
AbortDoc
RemoveFontResourceW

Sections

.text
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 938B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 172KB - Virtual size: 169KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data0
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE