045df324629f4038d23b61ccdf22753e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

045df324629f4038d23b61ccdf22753e_JaffaCakes118
Size

7KB
MD5

045df324629f4038d23b61ccdf22753e
SHA1

91af6b9f2637d9fc4c4f2e9c312e672c1b7aa82c
SHA256

d77c664135ca7e3605eb0a26ae5451321e0d87ab2122579ce0901c163bf44742
SHA512

ab7037dc312cfc381c57e4032bfd62c8f26a22249a8fe74d4a3cd76aced58dc34e6adb471223f7e8a4f7f3d58b686c66fbbcb10c18e17a0f43cc9bf17aa3777b
SSDEEP

192:4qdAqaWt+GfMjbBpOzo0jo1Nv//hzP0em:ReqtRkBp34o1N5P

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
045df324629f4038d23b61ccdf22753e_JaffaCakes118

Files

045df324629f4038d23b61ccdf22753e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e7a0f72015972495675c2f4ee19bdce8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Beep
CreateFileA
ExitProcess
GetDefaultCommConfigW
GetTapeStatus
GetTickCount
GetWindowsDirectoryW
GlobalLock
IsBadHugeWritePtr
IsProcessorFeaturePresent
SetCalendarInfoA
SetCommBreak
SetConsoleCursorPosition
_lcreat
lstrcmpiA

user32

CloseWindow
DdeKeepStringHandle
DdeQueryNextServer
DefMDIChildProcA
DefMDIChildProcW
EmptyClipboard
GetMenuDefaultItem
GetWindowPlacement
SetCaretPos
SetMenuInfo
ValidateRgn

shell32

Control_FillCache_RunDLLA
ExtractAssociatedIconExA
ExtractIconResInfoA
ExtractIconResInfoW
ExtractIconW
ExtractVersionResource16W
FindExecutableW
OpenAs_RunDLL
SHEmptyRecycleBinA
SHFileOperation
SHFileOperationA
SHGetSpecialFolderPathW
SHHelpShortcuts_RunDLL

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE