07233621749bf921827a3b713bed5f9d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

07233621749bf921827a3b713bed5f9d_JaffaCakes118
Size

93KB
MD5

07233621749bf921827a3b713bed5f9d
SHA1

c725ebccd9f8dbd60c7e6df10971ced87fa8ea71
SHA256

c93289caa246fb09d2d47d14b87e0f90f86064df951c5126ee85907c9c800153
SHA512

3f2d6d1f11bb17eb16934550ea8f2935d4971dc904ab1fc4944da252dae57341213689763c9d2e647561f00f8d1c521abb9a3c643081d1d58cc32fae039d0550
SSDEEP

1536:aDp331wj1Vsh3vgQBJNYcL3QkhkN2PELDwqHweFwWQQsMmtXFH33xgHDGZVx:aDZrvgkJNYcL3HkHYqHlQQsvHiHDuVx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
07233621749bf921827a3b713bed5f9d_JaffaCakes118

Files

07233621749bf921827a3b713bed5f9d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c90ae128a108bce88721802c0b460410

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsBadCodePtr
GlobalAddAtomA
GlobalAddAtomA
LoadLibraryExA
DeleteAtom
lstrcat
RaiseException
GetStdHandle
SetCommBreak
LocalFree
GetLastError
LoadResource
GlobalUnlock
CloseHandle
WriteProfileStringA
VirtualAlloc
HeapCreate
GetOEMCP
GlobalFree
EnterCriticalSection
SetConsolePalette

user32

GetWindow
GetClassInfoExA
GetFocus
EndPaint
ValidateRect
GetForegroundWindow
ReleaseDC
AlignRects
GetWindowTextLengthA
ShowWindow
GetParent
DrawEdge
IsIconic
GetClassNameA
BeginPaint
GetDC
GetActiveWindow
GetWindowTextA
CloseWindow

wsock32

WSACleanup
WSASetBlockingHook
WSAAsyncGetServByPort
WSAStartup
WSAGetLastError

linkinfo

CreateLinkInfoA

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 700KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ