0f1e0b549b61d89d626406e0f8c731d3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0f1e0b549b61d89d626406e0f8c731d3_JaffaCakes118
Size

26KB
MD5

0f1e0b549b61d89d626406e0f8c731d3
SHA1

41c2b69c78d4e00e65e61db00df0e773e545af7d
SHA256

5ed96b79c334116aa425fc4abaca1aa6acf481b15ebe8aee65313a1afcedc75d
SHA512

de977e23f9796834572496651223cae8dd60bc85b5c61954fa9514887db3d70af3a183b964da789641673699bb7929b4a5feb197969067a3b38659b5fe41093b
SSDEEP

768:VCIW+FWu7LUX17lT3Sgi2zqTbd3FeQmr4uQMud1ahuC:4IptUXVlT3R1Wd30j1jgC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0f1e0b549b61d89d626406e0f8c731d3_JaffaCakes118

Files

0f1e0b549b61d89d626406e0f8c731d3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b8d7882bef3f2d38198bce7ea5bbe06f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLocaleInfoW
UnregisterWaitEx
FreeVirtualBuffer
ConvertDefaultLocale
GlobalAddAtomA
AddLocalAlternateComputerNameW
TryEnterCriticalSection
WriteConsoleInputVDMA
GetConsoleAliasesLengthW
GetConsoleCommandHistoryA

user32

HiliteMenuItem
CtxInitUser32
SetScrollRange
AppendMenuW
SetDlgItemTextW
IsIconic
DrawFocusRect
CloseWindowStation
DeregisterShellHookWindow
SetUserObjectInformationA
CreateDialogIndirectParamAorW
EndDialog
SetKeyboardState
GetKeyboardLayoutNameA
CtxInitUser32

Sections

.text
Size: 23KB - Virtual size: 28KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 407B - Virtual size: 407B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ