22f8c26f639df6b27cdb0cb8d15ef7c1_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

22f8c26f639df6b27cdb0cb8d15ef7c1_JaffaCakes118
Size

39KB
MD5

22f8c26f639df6b27cdb0cb8d15ef7c1
SHA1

1fb6ce45b1b038069dc5fe6178fb8b20e14778c0
SHA256

eac4fa2bea828addaa2eeb0a52baeee34a15cf1f254354a700f40325baf54607
SHA512

e5dcc46a58cc13b8b4c222dda30a0b3229aa539cddad0a5e4013c4502dd211b7e262f13fa69c86eb316768448ce589cc536002ef1f7429f0cf6cbcae4edb1579
SSDEEP

768:dmeCdv1L3MGk3nhAM6kKRELd65/6qvG/sdZ+:0ht3MGk3hAMBj65bOr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
22f8c26f639df6b27cdb0cb8d15ef7c1_JaffaCakes118

Files

22f8c26f639df6b27cdb0cb8d15ef7c1_JaffaCakes118
.exe windows:3 windows x86 arch:x86

881a7c0e71cdc06376f2ece56d5ab696

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileAttributesW
SystemTimeToFileTime
VirtualAlloc
GetProcessId
FindAtomA
GetVolumeInformationW
GetLogicalDriveStringsW
GetDateFormatA
AddAtomA
CopyFileExA
GetACP
ConnectNamedPipe
GetProcessHeap

user32

GetTopWindow
LoadMenuIndirectA
MessageBoxA
IsIconic
ShowWindow
SetScrollPos
OpenClipboard
GetKeyState
ShowCaret

gdi32

SetTextColor
SetDIBits
CreatePalette
CreateDCW
BitBlt

advapi32

RegFlushKey
RegSaveKeyA

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 873B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ