23a0b518d17ed9d4c9af23767b9668ad_JaffaCakes118 | Triage

Sharing

General

Target

23a0b518d17ed9d4c9af23767b9668ad_JaffaCakes118
Size

392KB
MD5

23a0b518d17ed9d4c9af23767b9668ad
SHA1

10013663b34f4356eb5843ed0a5f50af16fd7dec
SHA256

e94b5dec47a80424483a687cae048a48382819ab68e38d960898fb696146eeb3
SHA512

c9e7d3be5c89a208f85e605c25ce9c57e7c03c2761928073cde442ca37b53058a76d655f7f1ebb9c68d05b768c445fdcd5990ad2b11fa8084313241e9d5e1bb3
SSDEEP

12288:9zh/yF1tpKV+n4o6/yf81C1/FVKrm0IwpfH:9EzKavfX0TpfH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
23a0b518d17ed9d4c9af23767b9668ad_JaffaCakes118

Files

23a0b518d17ed9d4c9af23767b9668ad_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8c18466f8be7f29ee2bfb3b0945a3d89

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

PulseEvent
GlobalFree
TlsGetValue
FindResourceA
LoadLibraryExW
CreateProcessA
HeapCreate
SetLastError
CloseHandle
CreateFileA
GetCommandLineA
GetACP
DeleteAtom
GetModuleHandleA
GlobalUnlock
ExitThread
ReleaseMutex
FindClose
CreateMutexA
GetEnvironmentVariableA

user32

DispatchMessageA
GetDlgItem
DrawEdge
GetDC
FillRect
CheckRadioButton
CallWindowProcA
CopyRect
DefWindowProcW
DrawMenuBar
GetIconInfo
IsWindow
SetFocus

msasn1

ASN1BEREncBool
ASN1BEREncEoid
ASN1BERDecNull
ASN1BERDecCheck
ASN1BERDecBool

clbcatq

SetupOpen

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ