2726f3b8e77780b7e5adc62e65f9626c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2726f3b8e77780b7e5adc62e65f9626c_JaffaCakes118
Size

171KB
MD5

2726f3b8e77780b7e5adc62e65f9626c
SHA1

1c581efaa3e8d50d946d2af3755dc4a9554cc878
SHA256

671278cd16d6aacfe9b3465c32676c012d16cc80569967337c9d3a9d8608d816
SHA512

da6d3f362f70634b210dafce37284b447ed168e9fcc873d59e8f2659de9ae03fbcabca9dba143538e8bf2b550b2734fdbcc3bd47122a86c32e542c4a8edc93a6
SSDEEP

3072:WzBmHYtT3NBydobkfnphy6wWZiMjIoHOXr/F7JQfZaCJaHELE2eV/O8EITVlWxGL:yQY1NByWIfph51jI9XzJqfA05LGJEAVV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2726f3b8e77780b7e5adc62e65f9626c_JaffaCakes118

Files

2726f3b8e77780b7e5adc62e65f9626c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3c5b0aed141dfaba688b9d7fa97b91c5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MultiByteToWideChar
GlobalGetAtomNameA
GetACP
IsValidCodePage
HeapSize
GetDateFormatA
SetFilePointer
GetConsoleOutputCP
VirtualAlloc
SetStdHandle
HeapReAlloc
GetOEMCP
EnumResourceNamesW
GetLocaleInfoA
CreateSemaphoreW
TlsGetValue
TlsAlloc
GetTimeFormatA
TlsSetValue
WriteConsoleA
GetCPInfo
RtlUnwind
RaiseException

user32

PeekMessageA
MessageBoxA
DispatchMessageA
LoadStringA
CharNextA
GetDesktopWindow
DispatchMessageW
wsprintfA

shell32

SHGetSpecialFolderLocation
SHAppBarMessage
SHGetPathFromIDListA
ShellExecuteExA
DragAcceptFiles
SHGetFileInfoA
SHBrowseForFolderA
Shell_NotifyIconA

rpcrt4

RpcStringFreeA

Sections

.text
Size: 83KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 84KB - Virtual size: 476KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ