23fcc8678e9269f6e0d76814a310f97f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

23fcc8678e9269f6e0d76814a310f97f_JaffaCakes118
Size

359KB
MD5

23fcc8678e9269f6e0d76814a310f97f
SHA1

5c53a4ea1917f82bc83963bb84728dfba60b5c95
SHA256

0d8f80a826715cbfd9625d6e1694711dd1ac7bb7d7483d332359b3c2b3d39267
SHA512

0536081727d1d90ab490021d08144e46db1cac12c571579d7af9740ed92390639f4acb825b6bddfd93c56636c0423d4662aa422ff7fd2cc5615785ee4b026829
SSDEEP

6144:vqugqHxSlGPQBaZ+BqhMXAy6fYv2SeJ3eB8fvmKNNcQ5ta6gKv5R3L/XWlpWzsVN:vlR9QI0Ay6fYvzEOe2KNSQ6l83zBzsu+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
23fcc8678e9269f6e0d76814a310f97f_JaffaCakes118

Files

23fcc8678e9269f6e0d76814a310f97f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b3b88beef4f7c818e1743f09a9c316af

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReleaseMutex
GetTickCount
HeapCreate
ExitProcess
GetDiskFreeSpaceW
GetFileAttributesA
GetModuleHandleW
LocalFree
GetComputerNameW
CreateFileA
GetSystemTime
GetDriveTypeA
lstrlenA
LoadLibraryA
FindAtomW
ReleaseMutex
ResetEvent
GetCommandLineW
GetTickCount
CloseHandle

user32

CallWindowProcA
EndDialog
DispatchMessageA
GetComboBoxInfo
GetDlgItem
FillRect
DestroyCaret
CloseWindow
GetCaretPos
CreateWindowExA
DrawStateA
GetClassInfoA
GetMenu

rasapi32

RasDialA
RasDeleteEntryA
DwEnumEntryDetails
DwCloneEntry
DwRasUninitialize

modemui

CountryRunOnce

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 436KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 346KB - Virtual size: 345KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ