f7f7559153b75c2ce5c03417d935cad6_JaffaCakes118 | Triage

Sharing

General

Target

f7f7559153b75c2ce5c03417d935cad6_JaffaCakes118
Size

27KB
MD5

f7f7559153b75c2ce5c03417d935cad6
SHA1

706733c9eb9a486717b093ab984806f9b460324e
SHA256

096001832cd14adcc3682bbccca87c2272f1ef3c0cc8b05dd03d48c2297adb71
SHA512

39751ac5369513421cb62378233c43a7f49fab305cc7c3d5a9fe9e79abd7ec5f8ce03284cf1b4ce3119f1a3bfdb7b5b8d71e88d7f181ca117a6dc982c392cd3e
SSDEEP

384:zMfY2m79O7s20oydYMge8gs6Vs64o6fVDB6pFUShdNqD/SWhYaoqL3feVxSqfzLj:vJ6s20rYOynL6pFUSghvokuook

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f7f7559153b75c2ce5c03417d935cad6_JaffaCakes118

Files

f7f7559153b75c2ce5c03417d935cad6_JaffaCakes118
.exe windows:5 windows x86 arch:x86

12f4eee5cd5bb4879b3dc9fda15aaa3f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memcmp
wcsncmp
_strlwr
strcat
_wfullpath
_beginthread
strlen
_except_handler3

ole32

OleLoadFromStream
CoGetStdMarshalEx
CoLockObjectExternal
OleGetIconOfClass
CoGetStandardMarshal
OleDestroyMenuDescriptor
CoGetMarshalSizeMax

kernel32

GetCurrentDirectoryA
ReadFile
InterlockedIncrement
lstrcmpA
LoadResource
SetEvent
WaitForSingleObject
GetTimeFormatA
HeapDestroy
lstrlenA
InitializeCriticalSection
GetEnvironmentStrings
GetStringTypeW
SetErrorMode

gdi32

GetDeviceCaps
DeleteObject
SetMapMode
CreateCompatibleDC
GetBkColor
RestoreDC
SetBkMode

advapi32

GetSecurityInfo
LookupPrivilegeValueA
SetSecurityInfo
IsValidSid
QueryServiceStatus
RegCreateKeyA
LookupPrivilegeNameA

user32

PostMessageA
LoadImageA
RegisterWindowMessageA
EnableMenuItem
CloseClipboard
CheckDlgButton
DrawFrameControl
DialogBoxParamA
WindowFromPoint
IsDlgButtonChecked

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 960B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ