2814d7bcb6a8053c425ab11b47ae44e9_JaffaCakes118 | Triage

Sharing

General

Target

2814d7bcb6a8053c425ab11b47ae44e9_JaffaCakes118
Size

28KB
MD5

2814d7bcb6a8053c425ab11b47ae44e9
SHA1

4cea924573c0f52a91be075fa77b9130a98b7627
SHA256

b46c0936d2ca1722544bc449a5aba449965d80fda4f6a80c4e9c00b4bc308cb0
SHA512

ccb094e7897070cbab503105e7c49afb9d741ff8342cfbceaeb30d6fdd5fcfd28c8d24e32ef2b1162eaba14a2458b6e884688a791cc2eaa56a121c432de980a5
SSDEEP

768:3FhWaMe2DittAY9+1s8zmHJ/pIiTTjHJsF4qOaxUeY3y:3FhWaMeCRQFpIsTjHJGYaxWi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2814d7bcb6a8053c425ab11b47ae44e9_JaffaCakes118

Files

2814d7bcb6a8053c425ab11b47ae44e9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3199cd853ba777979e3ebc8ce94c9713

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEnvironmentVariableA
LocalFree
SetLastError
Sleep
GetModuleHandleA
ReleaseMutex
GetStdHandle
TlsGetValue
CreateFileA
PulseEvent
lstrlenW
GetConsoleMode
GetCurrentThreadId
CreateMutexA
LoadLibraryExW
CloseHandle
TerminateThread
HeapCreate
FindResourceA
GlobalUnlock

user32

CopyRect
CheckRadioButton
GetClipCursor
GetIconInfo
DrawEdge
CallWindowProcA
DrawMenuBar
DispatchMessageA
FillRect
SetFocus
GetDC
GetDlgItem
IsWindow

apphelp

SdbCloseDatabase
SdbFindNextTag
ApphelpCheckIME
SdbGetDatabaseID
SdbFindFirstTag

clbcatq

ComPlusMigrate

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ