2295425fa66182b5d6f237c57ce76f49_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2295425fa66182b5d6f237c57ce76f49_JaffaCakes118
Size

342KB
MD5

2295425fa66182b5d6f237c57ce76f49
SHA1

aefaba95833ebee63104ce11d86d1c28f9336a1a
SHA256

954ca65f995ef53372e37158d73a0dbe52b69bef54c877447586f18f5e4c04e9
SHA512

ba9c19436b191725e75fc508f7b40afb00b5884e29e324b991cbab3533cc1da63e13479961594dac5b8950dd7a34c3209b908201ee1a195fffbd56bd3b34e5d6
SSDEEP

6144:xEtsYveIk44ai9PakfDYtlUKS2pf/xYLcu5NC9wXMq0jKI/g9k6b0o:BYvDsakbClM2pxYB3CuM/xTI0o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2295425fa66182b5d6f237c57ce76f49_JaffaCakes118

Files

2295425fa66182b5d6f237c57ce76f49_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a9bef717f8d54719cde41574199c70cf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsDebuggerPresent
GetConsoleCP
GetLastError
CreateEventA
GlobalUnlock
lstrlenA
HeapCreate
LocalFree
IsBadReadPtr
CreateFileA
CloseHandle
GetACP
LoadLibraryExA
CreateMailslotA
FreeEnvironmentStringsA
FindClose
CreateFileMappingA
GetStdHandle
GlobalLock
GetModuleHandleA

user32

GetIconInfo
GetListBoxInfo
CheckMenuItem
DispatchMessageA
EndDialog
GetDlgItemTextA
GetMessageA
RedrawWindow
GetDlgItem
DialogBoxParamA
SetFocus
IsMenu
GetDC
DrawIconEx

uxtheme

GetThemeMetric
GetThemeColor
DrawThemeIcon
EnableTheming
CloseThemeData

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ