2fd9aa6a92e26ccf22248aea60bee47d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2fd9aa6a92e26ccf22248aea60bee47d_JaffaCakes118
Size

775KB
MD5

2fd9aa6a92e26ccf22248aea60bee47d
SHA1

4b4a6f8e0f39c71148d995f3d57e2901d0d86656
SHA256

3c792a7ad3a91851fc282a59b59d99c5f99caf6901148f5865280b6fcfe711cc
SHA512

4e9f8a9da63b775637630ba506a217275964224526b27a6fbeecd799dd254ba9787392bee730c922896ab75fd5d960da2d4dc3c6f8e4bc203aa8659208490f7f
SSDEEP

24576:654D9PCShrvuNceqS5w3IVquhlL4QRus54V0:zaSkcR4T3L4Mf5w0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2fd9aa6a92e26ccf22248aea60bee47d_JaffaCakes118

Files

2fd9aa6a92e26ccf22248aea60bee47d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1635e08deaa9aa623638f96fce9547a7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryExW
GetPriorityClass
DeleteAtom
GetCurrentThreadId
GlobalFree
SetLastError
GetExitCodeProcess
HeapCreate
GlobalUnlock
TlsGetValue
GetStdHandle
VirtualQuery
CreateFileA
CreateMutexA
ReleaseMutex
FindResourceA
CloseHandle
SetEnvironmentVariableA
GetModuleHandleA
lstrlenW

user32

IsWindow
DispatchMessageA
CreateWindowExA
GetIconInfo
CallWindowProcA
DrawEdge
CheckRadioButton
GetDC
GetDlgItem
SetFocus
FillRect
CreateMenu
DrawMenuBar

ntshrui

GetLocalPathFromNetResourceA
IsPathSharedW
GetNetResourceFromLocalPathA
SetFolderPermissionsForSharing
IsPathSharedA

msasn1

ASN1BERDecEoid

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 765KB - Virtual size: 768KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE