07622ebc28c8a95d5cfd23af60ff060e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

07622ebc28c8a95d5cfd23af60ff060e_JaffaCakes118
Size

84KB
MD5

07622ebc28c8a95d5cfd23af60ff060e
SHA1

835446e35e428b3f56177623cb3566e7132cd8bc
SHA256

d788dd3dd7f3c7958c4505985474536a7f1e41711bead519efd5bb5376300c2e
SHA512

cc06990da2d70b3cfba4e0a063c6d0b6d6f9822cc902431fa9f124b032f932f67e0822f1acf5615f3c26074250fbe566b8202007688f209eae9eb62e3af88737
SSDEEP

1536:g42fVEcEazUAC2JMt9mv+BNLFjkOtUCCa9nF+Axmdj4Aa9ZC4Zr:g5+cpYlFt9y2xF22nFUrYN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
07622ebc28c8a95d5cfd23af60ff060e_JaffaCakes118

Files

07622ebc28c8a95d5cfd23af60ff060e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d6233ac6a31e7ea13b6ca45ccca32ac7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetProcessHeap
GetModuleHandleA
FindFirstFileW
GetVersionExA
FreeLibrary
FlushFileBuffers
GetTickCount
SetEndOfFile
GlobalUnlock
LocalFree

user32

DestroyMenu
DispatchMessageA
EnableWindow
GetCursorPos
FindWindowA
CheckMenuItem

msvcrt

_chdrive
__p__fmode

advapi32

RegSetValueExA

Sections

.text
Size: 4KB - Virtual size: 120KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE