0fb6aa18ea0678e72ae0eaff9059b294_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0fb6aa18ea0678e72ae0eaff9059b294_JaffaCakes118
Size

316KB
MD5

0fb6aa18ea0678e72ae0eaff9059b294
SHA1

2b04cf373b1873e060237ccd9d1cdcf8919ed3d7
SHA256

1c78390331fed17ae4f5207f49fd9303def36b77ea570efa446329afb4c36c95
SHA512

88e6ea34765cd1da2f2faa1afcd3f35ceb6d651e7529c1494e1014669e2746b0c1c5a5c8ad2dc9c8c5e36bc5f6c7b44e99ce16e8fa20f3155cfcb5f59bea25e5
SSDEEP

6144:ihgMbyt+/lFO7UXdj5hcD28Ek5k+6GGv+H1wpZnjZr0J/x:ihgxtAA70R5uq89H6EHe3pUx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0fb6aa18ea0678e72ae0eaff9059b294_JaffaCakes118

Files

0fb6aa18ea0678e72ae0eaff9059b294_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c8807d3eccf063c8c8d40a58f014d98e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetThreadPriority
GetEnvironmentStringsA
IsDebuggerPresent
DeleteAtom
GetModuleHandleA
OpenSemaphoreA
GetExpandedNameA
FormatMessageA
GetCurrentProcess
GetTimeFormatA
HeapDestroy
InterlockedExchange
VirtualProtect
GetCurrentThread
LoadLibraryA
GetCurrentProcessId
HeapCreate
GetStdHandle
WriteConsoleA
GetACP
FlushFileBuffers

user32

FrameRect
EndPaint
ShowWindow
GetFocus
GetDlgItem
ReleaseDC
SetActiveWindow
FillRect
GetClassNameA
GetWindow
BeginPaint
GetParent
SetForegroundWindow
IsIconic
ValidateRgn
GetCursorPos
wsprintfA
GetWindowTextLengthA
DrawTextA

linkinfo

IsValidLinkInfo
ResolveLinkInfoA
GetCanonicalPathInfoA
DestroyLinkInfo
GetLinkInfoData

version

GetFileVersionInfoA

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 708KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ