1b1cb7647d1b456868e725c7151b154b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1b1cb7647d1b456868e725c7151b154b_JaffaCakes118
Size

433KB
MD5

1b1cb7647d1b456868e725c7151b154b
SHA1

438d2d1418b8a9686a408a88bb1d3b2c78358e6d
SHA256

8047fb63011b71cb092d1d6eff74394effe8b8350d36aaeeb55405387d2a7763
SHA512

c976ccc927a70cf49bad7a33c5df11373b052c6d44aafe03cb1b092dbd410ca40ab4f6f96b9f922e64aafbe675a7552f4293e4104a9da3ef89827d2b64b3508a
SSDEEP

12288:p9gViivStpo04PFxI33u2/+ufTgWT939nAb83FqY2GoS:pegDtpo5IHcufMWT9GmUY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1b1cb7647d1b456868e725c7151b154b_JaffaCakes118

Files

1b1cb7647d1b456868e725c7151b154b_JaffaCakes118
.exe windows:1 windows x86 arch:x86

fc8caaf7abfd4288c685104445568f49

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateThread
ExitProcess
ExitThread
GetModuleHandleA
HeapAlloc
HeapCreate
HeapDestroy
SetThreadPriority
Sleep
WaitForSingleObject

user32

GetDesktopWindow
GetWindowDC
LoadBitmapA
MessageBoxA
ReleaseDC

winmm

waveOutClose
waveOutGetPosition
waveOutOpen
waveOutPrepareHeader
waveOutReset
waveOutUnprepareHeader
waveOutWrite

gdi32

BitBlt
CreateCompatibleDC
DeleteDC
SelectObject

Sections

.flat
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 204KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 328KB - Virtual size: 328KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE