0f6130b471b8f82fd914ec38040ee559_JaffaCakes118 | Triage

Sharing

General

Target

0f6130b471b8f82fd914ec38040ee559_JaffaCakes118
Size

814KB
MD5

0f6130b471b8f82fd914ec38040ee559
SHA1

c4a9c2615868bdee92c5711762258a38b534f6ba
SHA256

f77f7084ca56fc960d6fc5905948cd67c9c3f63d0c8b1f0daf2756b195d0adec
SHA512

aa89b308f40a79ac5294ae36f9d015ce2044022e94a2996c6276e5b18ccc46b1ec48d878390f554fc78b22accaa6ba4746bfe21dfc54c315ddb843469fffd563
SSDEEP

24576:seDxN6sqkjOyyu2YOf40MbQtoaBAJPE40fwhpTQx:seb6cj/yuCjaQ40YhBq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0f6130b471b8f82fd914ec38040ee559_JaffaCakes118

Files

0f6130b471b8f82fd914ec38040ee559_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1fd265e3a9dfbd9298b93474cd263d45

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
GlobalUnlock
CreateFileMappingA
CloseHandle
FreeEnvironmentStringsA
IsDebuggerPresent
GetModuleHandleA
LocalFree
GetACP
GetStdHandle
lstrlenA
CreateEventA
HeapCreate
IsBadReadPtr
GlobalLock
CreateMailslotA
GetConsoleCP
LoadLibraryExA
FindClose
GetLastError

user32

DispatchMessageA
EndDialog
RedrawWindow
GetIconInfo
GetDlgItem
DialogBoxParamA
IsMenu
GetMessageA
GetListBoxInfo
GetParent
CheckMenuItem
GetDlgItemTextA
SetFocus
DrawIconEx

apphelp

SdbFindFirstTag
ApphelpShowDialog
SdbFreeFlagInfo
ApphelpCheckRunApp
SdbCloseDatabase

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ