07a038d115909c940b2bdd7c7c0e2125_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

07a038d115909c940b2bdd7c7c0e2125_JaffaCakes118
Size

53KB
MD5

07a038d115909c940b2bdd7c7c0e2125
SHA1

c853f0fffd5074b1ceb72ad3d6f0fd8978168514
SHA256

6f376382ce7eb5aaf9d2450d6b98bb3e7081ead3378234e623cc60c94fe5e051
SHA512

46ea9ca55248359f9e70fc4b596b14922586e6c88ff03450fe57a1a5bf38057c0340b6fb7a1cf60bcfd8146515897cd19e2262d5d45c191deb3926d88968dea6
SSDEEP

768:t/qWhHDieFOw3iRkf5UdDF91ELPV5WGVPVIf6T/O24bizDL6ShBE:pTLFOSiJDFk8GVNIf6T2IDk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
07a038d115909c940b2bdd7c7c0e2125_JaffaCakes118

Files

07a038d115909c940b2bdd7c7c0e2125_JaffaCakes118
.exe windows:5 windows x86 arch:x86

1b3f6f7e8b1e7a4bf56d07beb83511b4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryValueExA

kernel32

lstrcpynW

shlwapi

PathCombineW
PathFileExistsW
PathFindFileNameW
PathMatchSpecW
PathRemoveFileSpecW
StrCmpNIA
StrCmpNIW
StrStrW
wvnsprintfA
wvnsprintfW

user32

DispatchMessageA
DrawIcon
GetClipboardData
GetForegroundWindow
GetMessageA
GetWindowLongA
GetWindowTextA
OpenWindowStationA
PeekMessageA

Sections

.text
Size: 43KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.execx
Size: 2KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.code
Size: 6KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ