008bb078473278517bb4c291deb6ab61_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

008bb078473278517bb4c291deb6ab61_JaffaCakes118
Size

55KB
MD5

008bb078473278517bb4c291deb6ab61
SHA1

e9ef731d90c3efd20eec488f0ea2cbea6882b5b7
SHA256

a086752ba5dfcaacefd6fa99735ed9081eab47f132862519142484c1e4cd2434
SHA512

7446a16ed79ccdbe163a22cb468f94b2f0d9fe0e09e36507c368ff2e376c1917e9d9b597565fda73cf5839d5d91bf90c393ac27f76ee7a7a02fafad106a9c5ed
SSDEEP

1536:UTC5TIWw6xWuSk9NWAQmXo1la1WY1/mio6U6n6VJ3jFbiddOWe7+SG/K3R1asgQ:FTIWw6xWuSeNWAQmXo1lOWY1/mio/6ns

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
008bb078473278517bb4c291deb6ab61_JaffaCakes118

Files

008bb078473278517bb4c291deb6ab61_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e29a1313412fb2779b3c335d689a5739

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
HeapCreate
TlsGetValue
WaitForSingleObjectEx
FindClose
GetConsoleCP
LoadLibraryExA
GlobalUnlock
LocalLock
GetConsoleAliasA
Sleep
GetLastError
FindAtomA
GetModuleHandleA
CreateFileMappingA
FreeEnvironmentStringsA
CreateFileA
GetCalendarInfoA
LocalFree
GetACP

user32

GetIconInfo
GetDlgItem
SetFocus
CascadeWindows
IsWindow
CreateDialogParamA
GetDC
DrawEdge
DefWindowProcA
GetMessageA
DrawTextA
CallWindowProcA
DispatchMessageA
MessageBoxA

msasn1

ASN1BERDecNull
ASN1BERDecEoid
ASN1BEREncLength
ASN1BERDecSkip
ASN1BERDecCheck

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ