1988b57f1448de5413ef3a75f7836231_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1988b57f1448de5413ef3a75f7836231_JaffaCakes118
Size

60KB
MD5

1988b57f1448de5413ef3a75f7836231
SHA1

780882ccb7ec564bfd490305cd4ed8fb17a0eba6
SHA256

f9f7321fb78abeda74ea4da03908c48d99809669231b3d8bc7cd37e051143638
SHA512

45fe7204372f9e8e16e3813b82fed537c0400711cb5ffc01529b9007dab85c4e91712c01aec5c135344d33b821694568ef535bf11e7fd1330b3d1f39c86d27f6
SSDEEP

768:t4NFR0rVZFjK5TxEeFM34BWfxIuk6cKd5bnKgUgtQPoJ7ybAZzDqPQUoUwrr7yue:twz4d4BWfmKdfUUJzGYUUauZDJ0Hbt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1988b57f1448de5413ef3a75f7836231_JaffaCakes118

Files

1988b57f1448de5413ef3a75f7836231_JaffaCakes118
.exe windows:5 windows x86 arch:x86

957aefe0e4594a37dfaa684a990f9473

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsWindow
GetSystemMenu
BeginPaint
EndPaint
SetWindowTextA
RegisterClassExA
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA

gdi32

CreateFontIndirectA
DeleteObject
GetTextColor
FrameRgn

ole32

ProgIDFromCLSID

kernel32

InterlockedDecrement
GetStartupInfoA
SetFileAttributesA
GetEnvironmentStrings
HeapAlloc
lstrcmpiA
InitializeCriticalSection
EnterCriticalSection
GetEnvironmentVariableA
GetPrivateProfileStringA
GetTickCount
HeapCreate
LeaveCriticalSection
HeapFree
DeleteCriticalSection
GetFileType

Sections

.text
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 492B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ