1aa193715331ed2344e64cc9f68f5f46_JaffaCakes118 | Triage

Sharing

General

Target

1aa193715331ed2344e64cc9f68f5f46_JaffaCakes118
Size

41KB
MD5

1aa193715331ed2344e64cc9f68f5f46
SHA1

3f0a36244eeddcb0fbb6983a771edd99378e9069
SHA256

194a608ca81821938c319a1fc4616e4bfa9da5d7ec4ddd407f38839c6513443d
SHA512

6daf9d189682c92688d838effa769e2b902ae5df48ee7ad4455f31df374c5f1c9f4c776f3d575fdcb24eca8e20d246aeae6cab12d9d7a0f41d79e453daa17c1f
SSDEEP

768:oZoGvCNh5wtO+rDo7LlUSgHgVJc1s5p7LysZ0xk7whJ+h6y:oZoECNCO+Po7ZUSgH+ksfRixkWyh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1aa193715331ed2344e64cc9f68f5f46_JaffaCakes118

Files

1aa193715331ed2344e64cc9f68f5f46_JaffaCakes118
.exe windows:4 windows x86 arch:x86

abd52b370385f00805c31860acb0c7fd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
ResumeThread
LocalLock
HeapCreate
GetVersion
LoadLibraryExA
GetModuleHandleA
GetUserDefaultLangID
GetConsoleCP
VirtualProtect
WaitForSingleObject
WaitForSingleObject
HeapReAlloc
InterlockedExchange
GlobalSize
GetCommandLineA
GetAtomNameA
GetACP
GetSystemTime
GetConsoleDisplayMode
SetLastError

user32

wsprintfA
FillRect
DrawTextA
ReleaseDC
GetCursorPos
AnyPopup
GetParent
GetWindow
GetDC
ShowWindow
CreateIcon
GetClassNameA
GetTitleBarInfo
DragDetect
GetFocus
BeginPaint
SetForegroundWindow
EndPaint
FrameRect

ntshrui

DllCanUnloadNow
GetNetResourceFromLocalPathA
GetLocalPathFromNetResourceA
SetFolderPermissionsForSharing
DllGetClassObject

msacm32

acmFilterEnumA

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE