0dbeef20b9c01d806c7a7b12e4e6ccae_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0dbeef20b9c01d806c7a7b12e4e6ccae_JaffaCakes118
Size

393KB
MD5

0dbeef20b9c01d806c7a7b12e4e6ccae
SHA1

2602ecf65e36f2724f2aef89f0757fdaab9b723d
SHA256

b69fcb56268a351460129423ead5b2fe94ca9da2ddf247de05d135ff7b13f451
SHA512

5b3ea00466bc655987a1f48dc0ac7e6961e456a7237e7c24cad1f721c90ad8b85a41b972f15dc59246a02f486754dd92ecd822f31aebc669de5f258a7b14f00a
SSDEEP

12288:BWh3KpJI6xj1dV9fJcEXW4OYIb5IiENCawufs:B2Cb1dV9fJhXWGHN1s

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0dbeef20b9c01d806c7a7b12e4e6ccae_JaffaCakes118

Files

0dbeef20b9c01d806c7a7b12e4e6ccae_JaffaCakes118
.exe windows:4 windows x86 arch:x86

981dd623d23248d7959a5e82fe4edab8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileMappingA
FreeEnvironmentStringsA
GetLastError
GetConsoleAliasA
GetConsoleCP
GetACP
CloseHandle
LocalLock
HeapCreate
TlsGetValue
LoadLibraryExA
GetCalendarInfoA
FindClose
LocalFree
GetModuleHandleA
Sleep
GlobalUnlock
CreateFileA
WaitForMultipleObjects
FindAtomA

user32

GetDC
DrawEdge
GetIconInfo
CallWindowProcA
CascadeWindows
CreateDialogParamA
GetDlgItem
GetMessageA
DispatchMessageA
DrawTextA
DefWindowProcA
SetFocus
IsWindow
MessageBoxA

msasn1

ASN1BERDecEoid
ASN1BEREncLength
ASN1BERDecSkip
ASN1BERDecNull
ASN1BERDecCheck

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ