269a362b15dcb00a1dd9444dc47301fa_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

269a362b15dcb00a1dd9444dc47301fa_JaffaCakes118
Size

165KB
MD5

269a362b15dcb00a1dd9444dc47301fa
SHA1

3ff8291e25f4e6b4e5c631958669cb9de6e3dd28
SHA256

d67df0bfad8a451350637bbce8fc7878a0e04fc840873fa5f2358e667ffca8b4
SHA512

d0e5c097de15336d9488e7e82082171cb29665ac828116cf6046046fda193046dcd3b017617304dd8923f42c659a293acc482627ee2e14b3ba1494010c78147f
SSDEEP

3072:up1ERi2V3V+MyFRnreI9NSC+TFkW5Ak2EHiIcQRGOasYlZjB1jpfR3Ztczlc:01EEQfaRnNf+ek7HiKRVWnjXvptcz+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
269a362b15dcb00a1dd9444dc47301fa_JaffaCakes118

Files

269a362b15dcb00a1dd9444dc47301fa_JaffaCakes118
.exe windows:4 windows x86 arch:x86

917e7478045a4d237a05f16c273ad907

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

FlashWindow
DestroyWindow
InvalidateRgn
IsWindowEnabled
ReleaseCapture
ExcludeUpdateRgn
RealGetWindowClassA
GetCapture
EnableWindow
ValidateRect
IsWindow
ValidateRgn
SetCapture
UpdateWindow
GetUpdateRgn

kernel32

CompareStringA
LocalFree
FileTimeToSystemTime
GetShortPathNameW
CreateFiberEx
FindFirstFileW
LocalFileTimeToFileTime
SetThreadAffinityMask
LocalAlloc
FindClose
GetSystemDirectoryW
SetErrorMode
SetCurrentDirectoryW
FindResourceW
EnumResourceNamesW
IsBadReadPtr
GetOEMCP
FreeLibrary
GetCurrentProcess
GetStringTypeW
SetThreadPriority
SystemTimeToFileTime
SetEnvironmentVariableW
LoadResource
GetLocalTime
FileTimeToLocalFileTime
LCMapStringW
FindNextFileW
SearchPathW

mprapi

MprConfigServerDisconnect
MprConfigServerConnect
MprConfigGetFriendlyName

Sections

.text
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imul
Size: 512B - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ