087f2b4e8061e19afc3e7abf77137293_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

087f2b4e8061e19afc3e7abf77137293_JaffaCakes118
Size

6KB
MD5

087f2b4e8061e19afc3e7abf77137293
SHA1

e85f482430266cbc7dce4d534eb52c30434d7bed
SHA256

e0b66f0fa9ad6d51840e67f722c433a19bc48c55a0a4cfa361a0c2449fe2ba46
SHA512

861970321a4ca5a8d4889ac17d1616d6eb0d0f0bd49c6c36448221c8e5e06372eba3445994ebb62b984c4e64656ad52b670f9e7aba9b0bf4d7dd54532cceeb13
SSDEEP

96:KHQYZjYqL2MxfLE7m17/OrR8/8XoE3TlgItltXtma+B:K/ZjRFS7m9mli8YE3Tlg6hsa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
087f2b4e8061e19afc3e7abf77137293_JaffaCakes118

Files

087f2b4e8061e19afc3e7abf77137293_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fb029e0c239f578ad0cdd62c194fd131

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetLastError
CreateFileMappingA
CloseHandle
FindClose
FindAtomA
IsDebuggerPresent
WaitForSingleObject
GetCalendarInfoA
GetConsoleAliasA
LocalFree
FreeEnvironmentStringsA
HeapCreate
TlsGetValue
GetACP
LoadLibraryExA
CreateFileA
GetConsoleCP
LocalUnlock
LocalLock

user32

CreateDialogParamA
DefWindowProcA
SetFocus
PostMessageA
GetDlgItem
GetMessageA
ScrollWindow
GetDC
DispatchMessageA
CallWindowProcA
IsWindow
CascadeWindows
GetIconInfo
DrawIconEx

msasn1

ASN1BERDecBool
ASN1BERDecEoid
ASN1BERDecCheck
ASN1BEREncFlush
ASN1BEREncLength

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ