2ef363aa4fb762c3dccb882cd0776d5f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2ef363aa4fb762c3dccb882cd0776d5f_JaffaCakes118
Size

110KB
MD5

2ef363aa4fb762c3dccb882cd0776d5f
SHA1

ce6e750b24ee2aa6988afe77c712e592b0cc900d
SHA256

943aad71b74e9ec52619832d7af4bc41ff5e60c092a3e7c41c2d6049a288ebbf
SHA512

eb2ee02105a54a57ad72fd17071df86719fd84b7f4c896c8c3194bce3034e3c65ad0686ca317d572725a08bf7630b358f57d4aae16058b3b87e98bdd4a6ffd46
SSDEEP

3072:PwT2qebZAltAcLM0RpSU7dlMyp274gTKLNH:PtbOjAcLM0pJ7v0kgSx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ef363aa4fb762c3dccb882cd0776d5f_JaffaCakes118

Files

2ef363aa4fb762c3dccb882cd0776d5f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4ec3dacbadda8470cf270a5e50389183

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalAlloc
GetTickCount
GetProcAddress
WaitForSingleObject
HeapFree
HeapAlloc
GetProcessHeap
VirtualProtect
LoadLibraryA
WaitForSingleObjectEx

user32

WaitForInputIdle
SetFocus
IsIconic
ShowWindowAsync
SetForegroundWindow
GetWindowLongA
SetTimer
GetParent
GetClassLongA
GetLastActivePopup
KillTimer
GetForegroundWindow
RegisterClassA
SendMessageA
GetClassWord

gdi32

GdiFlush

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 778B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE