014ece9172d0b9300f89b8888a24acb6_JaffaCakes118 | Triage

Sharing

General

Target

014ece9172d0b9300f89b8888a24acb6_JaffaCakes118
Size

103KB
MD5

014ece9172d0b9300f89b8888a24acb6
SHA1

579e6bde5791ce215113a14092658de3e1091bea
SHA256

416c37c6e2f4823a04fd4cfb6f8220cecd7ab8f4742f3f4c0606c4ca57d75a1d
SHA512

db3ccce58402769e2bd12569c34f8ba37de4779c043e931e80b64c65e489574f3bbbd6bf38b151bb4b82864526a5fa47ac3722bb5d8c0fbeae2097cc31b7d8a9
SSDEEP

1536:9pySa/2JpzcesjhseXkcQHATCueiVYoTmMUNLVw5ClugkBZrDj9Lj:n2AceWK4/QgveiVYoTFdQluhvj9L

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
014ece9172d0b9300f89b8888a24acb6_JaffaCakes118

Files

014ece9172d0b9300f89b8888a24acb6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

15f38b313b5be38fa738676d1c2b7e1a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DrawIcon
DrawStateA
EnableMenuItem
DestroyCursor
EndDeferWindowPos
EndDialog
EndMenu
DeleteMenu
CreateDialogParamA
CreateAcceleratorTableA
CopyRect
CloseWindow
CharUpperBuffA
CharToOemBuffA
CharToOemA
CharNextA
EnableScrollBar
ActivateKeyboardLayout

kernel32

lstrcpyA
lstrcmpA
WriteFile
VirtualFree
TlsGetValue
ReadFile
GetVersion
GetStartupInfoA
GetFileSize
lstrlenA

Sections

.text
Size: 1024B - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 88KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data0
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE