164ebceecc70a7410070c63f2668a9bb_JaffaCakes118 | Triage

Sharing

General

Target

164ebceecc70a7410070c63f2668a9bb_JaffaCakes118
Size

338KB
MD5

164ebceecc70a7410070c63f2668a9bb
SHA1

6a94de97e0b2b1b10be07813395c86be94aace40
SHA256

3e2c930d3140c64dc20a51d88cdff6fe233cdca9e5986539b911be10549acb76
SHA512

6468975fa6a2f5906fed24aded1041a927a7e84e6fa52eefb2e30e18ea076d8d995896d3827df6ac0486c4b26d93840085aedbc285dccf568d1b36a9d923dcfb
SSDEEP

6144:9O9qHTCO1CO+SysLQY7/NQyhPQO9AGIO52PlWBLc/C5M94OH8i8cu:9O9bILayo6AGIO8PlqLcq+94OH87n

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
164ebceecc70a7410070c63f2668a9bb_JaffaCakes118

Files

164ebceecc70a7410070c63f2668a9bb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f123e965ced723c7eb53b8ee8c3edf34

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
FreeEnvironmentStringsA
GetModuleHandleA
GetLastError
OpenMutexA
lstrlenA
VirtualProtectEx
LocalFree
LoadLibraryExW
GetSystemTime
GlobalLock
CreateEventA
GetACP
FreeConsole
GetStdHandle
GlobalUnlock
IsBadReadPtr
OpenMutexA
FindClose
ResumeThread

user32

GetSubMenu
IsIconic
GetMessageA
SetFocus
LoadCursorA
GetDlgItemTextA
ClipCursor
IsMenu
EndDialog
GetComboBoxInfo
CreateWindowExA
DialogBoxParamA
GetMessageA
MessageBoxA

uxtheme

DrawThemeBackground
GetThemeColor
EnableTheming
CloseThemeData
DrawThemeText

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ