23d30425df49300d00593920cf1bdf6f_JaffaCakes118 | Triage

Sharing

General

Target

23d30425df49300d00593920cf1bdf6f_JaffaCakes118
Size

22KB
MD5

23d30425df49300d00593920cf1bdf6f
SHA1

71b5e74050320398df6035542f61a776ea146501
SHA256

126e9dd4b4f82a8f1a4e93ebccaf5cc99a14602d428136759002a537b92fe157
SHA512

7b89e71b0b8bc56de1d773cb133589e1087e9e20ddd52de2ba5b851df808c4ab91c0faca537c2b0c77d3db106fc3084a56e5cf59d96d3d7b4296c2d75f56f12f
SSDEEP

384:0Eqr/HmO2WbFAqLmAWvpLCPbYVkzM8rCLdVup2gdYEJcR4mCi5Ao:0Eqb4WZoVvp2Pb0kQnLbup9SRJCAAo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
23d30425df49300d00593920cf1bdf6f_JaffaCakes118

Files

23d30425df49300d00593920cf1bdf6f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

67c34832b41af6de8ddd39c10ab3bbd0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RestoreLastError
VirtualFreeEx
SetConsoleCursorPosition
SetComputerNameW
CreateProcessW
GetVolumeNameForVolumeMountPointW
SetConsoleTitleW
DeleteTimerQueueTimer
InterlockedCompareExchange
SetConsoleCP
FatalExit

user32

DrawTextW
BringWindowToTop
EndTask
FindWindowExW
DlgDirSelectComboBoxExA
SetCaretBlinkTime
CharUpperBuffA
SetMenuItemInfoA
GetClassNameA
CharLowerBuffW
MapVirtualKeyExA
CreateIconIndirect
LockWindowStation

Sections

.text
Size: 19KB - Virtual size: 28KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ