3114f746f7cc0a07e3d59c48f77979b4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3114f746f7cc0a07e3d59c48f77979b4_JaffaCakes118
Size

51KB
MD5

3114f746f7cc0a07e3d59c48f77979b4
SHA1

cd70868c3a77c75c64598bf56a935647a3f3c384
SHA256

4b6fbbba73a4d73f1939c4a1b59088f2b90fe26f2be53719930d428ba8ab6627
SHA512

b1121fa2daa6fe87c87e55074967ad9740fe51a65a7b8eb5373f8ccd4f572c95381b88f4bdd2fc6c7a94beb0dd2570dfacc4e8ef16e018d25c8c1df2a2983c1c
SSDEEP

1536:02JIIQ0KBzHhlSn/rERUgymFCvI+bDsV:02JxQ0iLSn/rEltFMbDsV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3114f746f7cc0a07e3d59c48f77979b4_JaffaCakes118

Files

3114f746f7cc0a07e3d59c48f77979b4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f72bcb27bcb8a597c37ae9b0eac56c12

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateDirectoryExA
CreateSemaphoreW
CreateWaitableTimerA
ExitProcess
GetCompressedFileSizeW
GetFullPathNameA
GetVersion
GlobalAddAtomA
InterlockedDecrement
SetDefaultCommConfigW
SetFilePointer
SetHandleContext
SetLastError
TlsFree
WriteConsoleOutputA

advapi32

BackupEventLogW
OpenBackupEventLogA
OpenSCManagerA
QueryServiceObjectSecurity
RegQueryMultipleValuesW
RegSaveKeyA
SetFileSecurityW
SetNamedSecurityInfoW
StartServiceW

user32

CountClipboardFormats
DestroyWindow
GetMenuStringA
GetWindowLongW
IMPSetIMEA
IsClipboardFormatAvailable
ScrollWindowEx
SetWindowContextHelpId
SetWindowWord

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE