3414d85942add5f9263886a2f8b8293e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3414d85942add5f9263886a2f8b8293e_JaffaCakes118
Size

316KB
MD5

3414d85942add5f9263886a2f8b8293e
SHA1

a7c22072200c7391b8687f2cf833f2b0ef093b2f
SHA256

8bb19885611dd383ea54f94c96c119aa6bc29537fe59dfc9b33ea88fd5f53464
SHA512

e16ce7bc7c474894466f27a078cf527f1280e5666522a4f30d7664848c5dbba9a4d015d158b94e7843ef45e809e066311ad226e721f0388a60e438a6825cdc6f
SSDEEP

6144:khgMbyt+/lFO7UXdj5hcD28Ek5k+6GGv+H1wpZnjZr0J/x:khgxtAA70R5uq89H6EHe3pUx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3414d85942add5f9263886a2f8b8293e_JaffaCakes118

Files

3414d85942add5f9263886a2f8b8293e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ad4895cabfb2e80d361106d38ed9eb98

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteConsoleA
GetCurrentProcess
HeapCreate
GetEnvironmentStringsA
HeapDestroy
VirtualProtect
GetACP
FlushFileBuffers
GetThreadPriority
GetTimeFormatA
GetModuleHandleA
OpenSemaphoreA
DeleteAtom
GetCurrentThread
GetStdHandle
GetExpandedNameA
IsDebuggerPresent
FormatMessageA
GetCurrentProcessId
LoadLibraryA
InterlockedExchange

user32

ValidateRgn
ShowWindow
GetWindow
GetFocus
GetClassNameA
ReleaseDC
BeginPaint
DrawTextA
wsprintfA
FillRect
SetForegroundWindow
IsIconic
GetParent
GetWindowTextLengthA
FrameRect
GetCursorPos
GetDlgItem
SetActiveWindow
EndPaint

linkinfo

GetCanonicalPathInfoA
ResolveLinkInfoA
GetLinkInfoData
IsValidLinkInfo
DestroyLinkInfo

version

GetFileVersionInfoA

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 708KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ