092e635f8ead8dfe9a09f4d760abcdcb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

092e635f8ead8dfe9a09f4d760abcdcb_JaffaCakes118
Size

84KB
MD5

092e635f8ead8dfe9a09f4d760abcdcb
SHA1

d150e196046605a3e072975681714c5c7c384dbb
SHA256

353de8ab82cf4fdb7aa7953f912fdb73c47f642315e15e0b82fb72f638da89d6
SHA512

14b5f45a477b495a8ec04a9c498499b003ebc80b5127592d408a4a6240fa651d4968be65c4ffe52e63198e38b6fafad97e51ca7062ee273f28518bf6a1936630
SSDEEP

1536:2YUoUEb+25/jm9pNlrbzcVwLnrbLn5GcxVapEvR76L5mIiQl/YwZD:2YrUEb+25YNVSIrDLapRdmQl/YwZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
092e635f8ead8dfe9a09f4d760abcdcb_JaffaCakes118

Files

092e635f8ead8dfe9a09f4d760abcdcb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4e6644007ef6260d1a412e1facf2cfd5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEvent
CancelWaitableTimer
CloseHandle
WaitForSingleObjectEx
SetWaitableTimer
CreateSemaphoreA
WaitForSingleObject
ResetEvent
CreateWaitableTimerA
GetTickCount
CreateThread
ExitProcess
VirtualQuery
VirtualProtect
CreateEventA
WriteFile

user32

GetSystemMetrics
GetClassInfoExA
CreateDialogParamA
SendMessageA
ShowWindow
FindWindowA
GetWindow
PostMessageA

comdlg32

GetSaveFileNameA
GetFileTitleA

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ