0e1452380bdb55bfc9f8060e88eeb6f8_JaffaCakes118 | Triage

Sharing

General

Target

0e1452380bdb55bfc9f8060e88eeb6f8_JaffaCakes118
Size

340KB
MD5

0e1452380bdb55bfc9f8060e88eeb6f8
SHA1

39f881bbc417e089bedb71a4bcaaacdb8ba06b94
SHA256

3bce219bc67281d85e62bec3243f93b30f35d9ca6ce83ef959aa97e9a3ad44db
SHA512

101ccfdb6276487a0631c14e97eb18568fa33f4b15a212b26a5ba4e6665ab697c3ac0b57da0f027e684682f413a6342682d23060f3d91f9220fa2935b81a603e
SSDEEP

6144:fpIpQ9uaon7tZHr5VO1CXUw4H4HXjr56Bg1XV3s3h5knMOMs4Vk:f6pS87tZ9UgHf3jFog15VnRV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0e1452380bdb55bfc9f8060e88eeb6f8_JaffaCakes118

Files

0e1452380bdb55bfc9f8060e88eeb6f8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bc659545a91dd0bdc06df32b67809fea

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStdHandle
lstrlenW
CreateEventA
CloseHandle
CreateFileA
FindClose
IsDebuggerPresent
GlobalLock
GetPrivateProfileIntA
GetModuleHandleA
GetConsoleCP
LocalFree
GlobalUnlock
GetLastError
IsBadReadPtr
CreateFileMappingA
GetACP
LoadLibraryExA
FreeEnvironmentStringsA
HeapCreate

user32

SetFocus
RedrawWindow
IsWindow
GetListBoxInfo
GetDlgItemTextA
GetDC
GetDlgItem
GetMessageA
GetIconInfo
CheckMenuItem
DispatchMessageA
DialogBoxParamA
EndDialog
DrawIconEx

uxtheme

CloseThemeData
GetThemeColor
GetThemeMetric
DrawThemeIcon
EnableTheming

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ