428c24a21dc3efd591c01959d7070451_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

428c24a21dc3efd591c01959d7070451_JaffaCakes118
Size

218KB
MD5

428c24a21dc3efd591c01959d7070451
SHA1

fe8092645d5626f10f5f0a8da7493cb5aae35184
SHA256

e5279b8c89d2d6d1cf8f61fbc093f04969ca2a8ae58dd15805ed1a86195246f5
SHA512

f0aee84acb1909fd57dd4297a3ac85cc6b1e617cb825a4d497f8ec45c125e11f123f077e68042af534f23939f8bdba33157d754ba6bb264f43f5bcc930450afb
SSDEEP

6144:B49iTVVmVVV8VVNVVVcVVVxVVVPVVlVVVRVVVtVVWV20jVLVVOVVUVZVVVVVjVVR:Bd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
428c24a21dc3efd591c01959d7070451_JaffaCakes118

Files

428c24a21dc3efd591c01959d7070451_JaffaCakes118
.exe windows:10 windows x86 arch:x86

7e2d2e37c33a6414a9a9495b630155f9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_FORCE_INTEGRITY
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

advapi32

RegCloseKey

api-ms-win-crt-stdio-l1-1-0

feof

api-ms-win-crt-string-l1-1-0

wcstok

api-ms-win-crt-runtime-l1-1-0

exit

api-ms-win-core-winrt-l1-1-0

RoInitialize

user32

EndDialog

gdi32

SetBkColor

uxtheme

OpenThemeData

comctl32

ord413

ntdll

RtlUnwind

mpclient

MpConfigOpen

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

api-ms-win-crt-heap-l1-1-0

free

Sections

.MPRESS1
Size: 26KB - Virtual size: 260KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 188KB - Virtual size: 187KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE