27e60dca4ee90b9975cc2313583a10d0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

27e60dca4ee90b9975cc2313583a10d0_JaffaCakes118
Size

56KB
MD5

27e60dca4ee90b9975cc2313583a10d0
SHA1

7d1e5e543d77c6eab39ff8a51c9255e26c3cef9f
SHA256

55b28f5a5e9ae330fd2d3dfa4b6b2d22b9b67d4e769d4f36f3842f6992bc2154
SHA512

e4bddf16fb59e4352064cbfaef2bcc27915f1eb3453ec783409cf944c9485e655fbc97342329d4093c92f715a30cd9de3ad111fed69c54a9482f90e20a3bcd0a
SSDEEP

1536:L2WtAUnlR0mX/jHxUQgZMLvDdKPBq+LR:LFtD7x/DxU1KbZ8U+1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
27e60dca4ee90b9975cc2313583a10d0_JaffaCakes118

Files

27e60dca4ee90b9975cc2313583a10d0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5909e280765d7e7436dfa90b89fea63f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTime
GetCurrentThread
GlobalFree
SetThreadPriority
CancelWaitableTimer
SetLastError
GlobalLock
lstrcpyW
FindNextFileW
GetCurrentThreadId
MultiByteToWideChar
GetDriveTypeW
GetProcAddress
LoadLibraryA
WideCharToMultiByte
FreeLibrary
QueryDosDeviceW
GlobalDeleteAtom
ResetEvent
SizeofResource
GetPrivateProfileStringW
FindResourceExW
SuspendThread

user32

ReleaseCapture
TrackPopupMenu
GetSysColor
SetWindowPos
SendMessageW
GetClassNameW
VkKeyScanW
FillRect
DispatchMessageW
RegisterHotKey
MessageBoxW
GetWindowTextW
SetForegroundWindow
LoadBitmapW
LoadStringW
IsWindow
SetWindowTextW
SystemParametersInfoW
GetWindowDC
GetSystemMetrics

gdi32

CreateDCW
CreateRoundRectRgn
GetDeviceCaps
Rectangle
CreatePen
SetTextColor
DeleteDC
SetBkMode

advapi32

StartServiceW
LookupAccountSidW
RegCloseKey
RegOpenKeyExW

Sections

.text
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 988B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE