3443fc2c8944e6822a8644a904a52cc6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3443fc2c8944e6822a8644a904a52cc6_JaffaCakes118
Size

10KB
MD5

3443fc2c8944e6822a8644a904a52cc6
SHA1

feb61d17fcf3fa86f89fe923b649f2c7bfb3d685
SHA256

55a2b4d84fdc95d2810faf6f77700ddfb9198ab8ddb3b8995893a4eb9f4768ed
SHA512

8b5afb5a9188f67ef678f7133a270d59d141cd65a38f03151d711add507ccc1429afa93861b531d28cdddc507b2148c980f2cebfc1af7fac39148126e605a465
SSDEEP

192:A5AwJYnE+oa87Hhr1BRWkfk9V0T1NdheoK12jJf+gUvVSXSAg3ya7kiyRli:yz3ksk9MNdE8Jf+cbKyLi0l

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3443fc2c8944e6822a8644a904a52cc6_JaffaCakes118

Files

3443fc2c8944e6822a8644a904a52cc6_JaffaCakes118
.exe windows:1 windows x86 arch:x86

6881894f319e8a2f747d7e3916c50874

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateFileA
CreateThread
ExitProcess
FindResourceA
HeapAlloc
HeapCreate
HeapDestroy
LoadResource
ReadFile
SetFilePointer
SetThreadPriority
SizeofResource
Sleep
WaitForSingleObject

user32

MessageBoxA

winmm

waveOutGetPosition
waveOutOpen
waveOutPrepareHeader
waveOutReset
waveOutUnprepareHeader
waveOutWrite
waveOutClose

Sections

.text
Size: 512B - Virtual size: 74B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 702B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 72KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE