1bb60e0939e2adbe89b1e76332710b47_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1bb60e0939e2adbe89b1e76332710b47_JaffaCakes118
Size

11KB
MD5

1bb60e0939e2adbe89b1e76332710b47
SHA1

19bbdf0a11a845f5c751207170eecc754fb23fca
SHA256

c91092646d976512c80e15a31cdc35b0aca363b5ea9e1bf1ddbb9ea161fc7453
SHA512

bf2ac93da86722df1384668afe0dce217ef786be447a5882a6ee41efea39706cb351b5af2d4d8159fefeb033458bf5c967b72ac93596f44175a4ca262cc9a41d
SSDEEP

192:uMT3pfUP1MEuhtLdvSBfUes2ldjN7FabV1DhGvXiAAAAbEcoD39qvtPUWCU7UY:uMT5UPSEM8BfUelvpFQ1DhjkqvZjZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1bb60e0939e2adbe89b1e76332710b47_JaffaCakes118

Files

1bb60e0939e2adbe89b1e76332710b47_JaffaCakes118
.exe windows:1 windows x86 arch:x86

b6947fd9af925524ad0117029de88ea6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumCalendarInfoA
ExitVDM
FormatMessageA
GetAtomNameA
GetConsoleCP
GetDateFormatA
GetLocalTime

msvcrt

log
??0bad_typeid@@QAE@PBD@Z
??_U@YAPAXI@Z
??_U@YAPAXI@Z
??_V@YAXPAX@Z
?_query_new_handler@@YAP6AHI@ZXZ
?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z
??0bad_typeid@@QAE@PBD@Z
?name@type_info@@QBEPBDXZ
?set_terminate@@YAP6AXXZP6AXXZ@Z

user32

DlgDirListA
DrawTextExA
EnumPropsA
GetCapture
GetCursorInfo
FindWindowA
GetInputState
GetMenuItemID

Sections

.text
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 6KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE