16e6b077cbfef93e2ce017848cdc7572_JaffaCakes118 | Triage

Sharing

General

Target

16e6b077cbfef93e2ce017848cdc7572_JaffaCakes118
Size

44KB
MD5

16e6b077cbfef93e2ce017848cdc7572
SHA1

60f38dd5be9d5ae08e5b25ceeb4ddb1bbd9017a6
SHA256

500daa1ef84aac842118c036d0f8fe8ba39053764e71c68a0e4905f80ce99a90
SHA512

2b54e5d01942e7cc1beefcd605f1a4e60b3f53095d0fadadef9a2ab59ce8f492dcba4b828722ca2706f08527461173fa551f10e0f41bbfc3d1971ff50b11e4c7
SSDEEP

768:fwV4p/N5xcJjJJmYMWXKJbJi1bKymcVQ5O8bxbNrOqyJ5bQs8SYwVaUxtK:fwV4p5cJmpCKVJiXmcgJbPO5bF8SYwe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16e6b077cbfef93e2ce017848cdc7572_JaffaCakes118

Files

16e6b077cbfef93e2ce017848cdc7572_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0ab3790af7c3f0befa6f7b060d6c4624

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DrawCaption
DialogBoxParamA
DestroyCursor
DestroyCaret
DefDlgProcA
CreatePopupMenu
CreateMenu
CreateIconFromResourceEx
CreateIconFromResource
CreateIcon
CopyRect
CharNextA
CharLowerA
ChangeMenuA

kernel32

FlushFileBuffers
lstrlenA
lstrcpynA
lstrcpyA
lstrcmpiA
lstrcmpA
WriteFile
VirtualAlloc
TlsFree
Sleep
SetCurrentDirectoryA
OpenFileMappingA
MapViewOfFile
LocalAlloc
LoadResource
CloseHandle
CompareStringA
FindResourceA
GetCommandLineA
GetSystemTime

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE