b63f9cb90137fde9f6ecd62a0615b874_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b63f9cb90137fde9f6ecd62a0615b874_JaffaCakes118
Size

308KB
MD5

b63f9cb90137fde9f6ecd62a0615b874
SHA1

132fb7e6bb8c12c628e20e79744f06f6d724cef4
SHA256

1060abd6037711dba178e04a9ca6c70f33936692d74acdae3377b661eb1d319d
SHA512

9b83f3aa4f7364c3f810017c4223ef257719ae58f45169979e28da206da52b9efc61f93d0858c7230b73ae76c0867a24cc44d032ecdea82da4963ce3fa46f447
SSDEEP

6144:bfY2Hfge2cLNXU/BQ6PJMm7td3JMIMQuPw+nxwb:bfYUb2cLY7P9Zd3J9M7P/nx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b63f9cb90137fde9f6ecd62a0615b874_JaffaCakes118

Files

b63f9cb90137fde9f6ecd62a0615b874_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0f67bb9e3ffa5fecd5fae109c6256519

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

InitializeCriticalSection
GetStartupInfoW
GetModuleHandleA
FindResourceW
ReadFile
GetLastError
HeapCreate
SetFileTime
GetExitCodeProcess
FormatMessageW
LeaveCriticalSection
SetFileTime
SetFileTime
LoadLibraryA
lstrcpyA
CreatePipe
GetFileSize
CloseHandle
CreateMutexW
IsBadWritePtr
lstrcatA

mstscax

DllRegisterServer
DllGetClassObject
DllCanUnloadNow
DllUnregisterServer

user32

LoadCursorW
PostMessageW
IsDialogMessageA
wsprintfA
GetWindowTextA
DispatchMessageA
GetWindowRect
IsWindow
SetFocus
MessageBoxA
PeekMessageW
PostMessageA
GetWindowLongW

clbcatq

SetSetupSave

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rich
Size: 1KB - Virtual size: 193B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 293KB - Virtual size: 293KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ole
Size: 512B - Virtual size: 112B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE