0ba8326f5fceb6876615b23d89241cd3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0ba8326f5fceb6876615b23d89241cd3_JaffaCakes118
Size

35KB
MD5

0ba8326f5fceb6876615b23d89241cd3
SHA1

22f45432e8ce3b768b80075b24e5049151c050c9
SHA256

5107acc2b95487fbed0536e8e7a9058b97bc03a05aba766bc439ec5c6a4e14a7
SHA512

6bf7f92e4df5005b28ae3631c5a50147b6d4c68f7605afd6c74a95f3e448a937cfa0da7f35764195456244a613a6a40e4142d89d8c5418b147d73215e8fa8a06
SSDEEP

768:16Q6WIV25WrqVenBkK9XZIXUPrXH4XI9ZzqPDsDVGOGHK:1eWIVLeV6BVPjaIeDsJZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0ba8326f5fceb6876615b23d89241cd3_JaffaCakes118

Files

0ba8326f5fceb6876615b23d89241cd3_JaffaCakes118
.exe windows:48521 windows x86 arch:x86

e5c0f85206fc58d72dd40966a2dd9d37

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetModuleFileNameA
LocalFree
FreeLibrary
VirtualFree
VirtualAlloc
EnterCriticalSection
DeleteCriticalSection
UnhandledExceptionFilter
GetACP
LoadLibraryA
SetUnhandledExceptionFilter
lstrcmpiW
ExitProcess
lstrcpyW
SetUnhandledExceptionFilter
LoadLibraryW
GetModuleHandleW
GetCurrentThreadId
HeapReAlloc
HeapAlloc
GetModuleFileNameA

user32

WinHelpW
LoadStringW
SetDlgItemTextW
DefWindowProcW
SetForegroundWindow
LoadIconW
LoadAcceleratorsW
FillRect
FillRect
SetWindowTextW
OffsetRect
GetWindowTextW
IsDialogMessageW
LoadImageW
GetDlgCtrlID
GetDlgItem
SetCursor

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ