188a85fc9e9040135f27567c746fae0f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

188a85fc9e9040135f27567c746fae0f_JaffaCakes118
Size

338KB
MD5

188a85fc9e9040135f27567c746fae0f
SHA1

1fdf1cb4904729030be6f4c41d3e31c603cc76bc
SHA256

c9146c858e9d3c11f358a320a6eae66fe533849f9924591395501f824ac83c8d
SHA512

6fbf8c51d8dbcc82df00343af600deb717634cc1c694b0d5abfc46d57753b84a8a1d72c03c14d1aaedbec31bfd19416755e4389de0dfdc0f8ef8d10c01f07fd9
SSDEEP

6144:Pfy8QeSQ/ssuD0joUMQzcnRfaKMDwzCTzKSk7bIXz0Ewho/rIihdDk:PqdejtjonxwZMzcdXz0PoMih+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
188a85fc9e9040135f27567c746fae0f_JaffaCakes118

Files

188a85fc9e9040135f27567c746fae0f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a9b27aa7f24978930e6736261a041a04

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryExW
OpenMutexA
LocalFree
OpenMutexA
lstrlenA
GetACP
FindClose
FreeConsole
IsBadReadPtr
GlobalLock
VirtualProtectEx
GlobalUnlock
GetStdHandle
LocalFlags
GetLastError
CloseHandle
CreateEventA
GetModuleHandleA
GetConsoleTitleW
GetSystemTime

user32

GetDlgItemTextA
GetParent
IsMenu
DialogBoxParamA
LoadCursorA
ClipCursor
IsIconic
EndDialog
GetSubMenu
GetKeyState
GetMessageA
CreateWindowExA
GetMessageA
MessageBoxA

clbcatq

SetupSave
GetComputerObject
GetCatalogObject
CheckMemoryGates
ComPlusMigrate

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ