f6bb8acace6d7a00244972d96ab6a62f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f6bb8acace6d7a00244972d96ab6a62f_JaffaCakes118
Size

37KB
MD5

f6bb8acace6d7a00244972d96ab6a62f
SHA1

198fb4ed0d47f8d11dbd653cecc89f8d5b508b87
SHA256

254974946c1c3b91291d41f04bd7a7c08d4251b1d7191fdabc8c65f3d0023728
SHA512

7c23b5275dbd71511bcbc94012b743e81054352e061a11bd1c157d1ee56c167d1b4684e4533f02ab2049f7fd8ccdc58476845da1174bc5712dfd0651d378595d
SSDEEP

768:5EsxC02iMkA6XdLsPeAvsuDZyyr1TIkSrKICTr18Jd0d5C79QRQTL7Co+r:5Esg0rMk1dsDA41TIkMKfTB8iGCRIqoE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f6bb8acace6d7a00244972d96ab6a62f_JaffaCakes118

Files

f6bb8acace6d7a00244972d96ab6a62f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6e08d0c6455ec006c804db69d567d03c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileW
CreateMutexW
ExitProcess
GetLongPathNameW
GetNumberFormatW
GetProfileIntW
GetQueuedCompletionStatus
GetSystemTimeAdjustment
LocalAlloc
OutputDebugStringW
SetConsoleTitleW
SetCurrentDirectoryA
SetEndOfFile
SetProcessShutdownParameters
_lopen

user32

AdjustWindowRectEx
AppendMenuW
BroadcastSystemMessage
BroadcastSystemMessageA
CopyIcon
DrawIcon
EnableMenuItem
EnumWindows
GetScrollRange
IsDlgButtonChecked
LoadCursorA
TabbedTextOutW

shell32

Control_FillCache_RunDLL
Control_RunDLLA
DllGetClassObject
DllGetVersion
DragQueryFileAorW
DragQueryPoint
ExtractIconResInfoW
FindExeDlgProc
FreeIconList
SHChangeNotify
SHGetFileInfoA
SHGetMalloc
SHGetSettings
SHHelpShortcuts_RunDLL
Shell_NotifyIcon

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 34KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE