08cae87c3e13ca57ec61f9eab1352585_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

08cae87c3e13ca57ec61f9eab1352585_JaffaCakes118
Size

242KB
MD5

08cae87c3e13ca57ec61f9eab1352585
SHA1

bf903419d23594d8b9eacc74325266f01b7d9f83
SHA256

ad4482322f5160791888f3382a87b8c857b775be2f993e3e1154632a03abbcf7
SHA512

11628daf502e5a4fbedc09f67a96713d49366f14c431e0d15dd03fa643827eb94f30f463d5b75bb75822104c38201a8db764544481f5af20e1d387b1735ff5b8
SSDEEP

6144:UM4Jg5oOGNYjTReDWJ3+JVtztzJL8/3sithMgdHuvDGy7AD:ULb6eDWJ3+JztzhYthTd2GVD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
08cae87c3e13ca57ec61f9eab1352585_JaffaCakes118

Files

08cae87c3e13ca57ec61f9eab1352585_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0310cd364d04b6e3f745fea0f93c49bb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
FoldStringA
GetLastError
GetLocaleInfoA
SetConsoleCP
GlobalFree
GetDriveTypeA
EnterCriticalSection
GetStdHandle
GlobalAddAtomA
LoadLibraryExA
LockResource
GlobalUnlock
InterlockedExchange
GlobalDeleteAtom
SetErrorMode
GetACP
CloseHandle
VirtualProtect
HeapCreate
RaiseException

user32

GetMenuItemInfoA
ShowWindow
DrawEdge
GetActiveWindow
CharToOemA
GetParent
GetCursorPos
GetWindow
EndPaint
BeginPaint
SetForegroundWindow
GetWindowTextA
DrawTextA
ValidateRect
IsIconic
ClipCursor
ReleaseDC
GetClassNameA
GetFocus

version

VerQueryValueA
VerLanguageNameA
VerFindFileA
GetFileVersionInfoSizeA
GetFileVersionInfoA

rasadhlp

WSAttemptAutodialName

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 596KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ