15c2c1e8d62493635ba9566bf0f8845e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

15c2c1e8d62493635ba9566bf0f8845e_JaffaCakes118
Size

188KB
MD5

15c2c1e8d62493635ba9566bf0f8845e
SHA1

4ec0df698c53694df170d7e8f4a12db5392bc8e8
SHA256

403bf0fa5143b8812aaf8954d396dd6da01517c9fb57522434c9488b376a8a46
SHA512

35c1ae28fcf0505837012186aa14a6cd99193c94672d4bc70f195d8cc8efc4d8e5454f97b88f0a578f5d2f86b916bcad6e9867dae91ba94c0a17da77bdac2bc6
SSDEEP

3072:QLLoU760pOReTPrDXHf32fd3KkfXXyYtLxgp8VBh7J1Uy:Q1G0NLrDX/32fRVVxgp8VBhd1Uy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
15c2c1e8d62493635ba9566bf0f8845e_JaffaCakes118

Files

15c2c1e8d62493635ba9566bf0f8845e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fcc1ec5337ae4cface994c9f91078b62

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
GetPrivateProfileStringA
SetCurrentDirectoryA
lstrlenA
GetModuleFileNameA
GetFileAttributesA
lstrcpyA
CloseHandle
GetLastError
CreateMutexA
ExitProcess
GetModuleHandleA
GetStartupInfoA
Sleep

user32

SetWindowPos
SendDlgItemMessageA
wsprintfA
DestroyWindow
CreateDialogParamA
SetDlgItemTextA
UpdateWindow
LoadImageA
MessageBoxA

shell32

ShellExecuteA

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 744B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 689B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 131KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE