271794046a0d0537f7a4361df9d2e7fd_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

271794046a0d0537f7a4361df9d2e7fd_JaffaCakes118
Size

53KB
MD5

271794046a0d0537f7a4361df9d2e7fd
SHA1

cfccc2461ccc364f4f3d48ed3654c5fd46d8b161
SHA256

51b8c62b770561743e0d332b7fba406ab41b1069f3e7e8558f74ac1cacbfb626
SHA512

a2ac52ea990e93a6b424b235b2bb1e8d7ae040f3657a6891a6ac73e966f2103cc2efe52c14569ead551dec37dbdcd7fa02c429a10c18cc227799cc8225ddde92
SSDEEP

768:OLjL1e7rDsIn7l71yX2IbY9auRwHgyiLW6enCPTidsFS8cIfcvMB/kGdaT:OWr4I7tdIbQRwAycW6e2+dsFUM5kGdS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
271794046a0d0537f7a4361df9d2e7fd_JaffaCakes118

Files

271794046a0d0537f7a4361df9d2e7fd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

57a64a122e42a5515cc0042b67ab9a57

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetupComm
FreeEnvironmentStringsW
Process32NextW
AreFileApisANSI
GetCPInfoExW
FindFirstVolumeW
ResetWriteWatch
RegisterWaitForSingleObject
DosPathToSessionPathW
GetCommandLineA
ExitProcess
GetStartupInfoA

user32

EmptyClipboard
EndPaint
ScreenToClient
GetComboBoxInfo
MsgWaitForMultipleObjectsEx
SetDlgItemTextA
GetLastInputInfo
DrawTextA
CreatePopupMenu
SetActiveWindow
ShowWindowAsync
LoadIconW
DrawFrameControl
GetMenuContextHelpId
PackDDElParam
SetCursorContents
TileWindows
GetGuiResources
SendMessageA
GetTabbedTextExtentA
EnumPropsExA
IsZoomed
RegisterDeviceNotificationA
SetScrollRange

Sections

.text
Size: 4KB - Virtual size: 99KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 41KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ