344a93bf1aeb058b7e94f73793b3044b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

344a93bf1aeb058b7e94f73793b3044b_JaffaCakes118
Size

55KB
MD5

344a93bf1aeb058b7e94f73793b3044b
SHA1

7c29a0e2b10fc459aec752a0a541b9ecf27e4065
SHA256

425af3a38e4f0572b6a65a2ad1c38334fbc22d49456e6d4bd5a640be2a04518e
SHA512

ce153f394784267267e6490fe6f759a072e6ee01fd975a07e84812d71251b00723f148137f1a4d2c49be64c5b182c305c056ea292e24b262ee26449e1a8cf3e2
SSDEEP

1536:ds7HxLd5olwPLtiW+TVu4M8DI5zAqGWwOCeoRIcu1Iwko:ds7JM2PLREIVAjWTBKwko

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
344a93bf1aeb058b7e94f73793b3044b_JaffaCakes118

Files

344a93bf1aeb058b7e94f73793b3044b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fbfe970a11206c4739310bc9cae37800

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumCalendarInfoExW
EnumCalendarInfoW
ExitProcess
GetConsoleOutputCP
GetCurrentThread
GetNumberFormatW
GetUserDefaultLangID
GetVersionExW
InitializeCriticalSection
IsBadCodePtr
SetHandleContext
UnhandledExceptionFilter
VirtualFreeEx
_lopen
lstrcpy

advapi32

BuildImpersonateTrusteeW
CryptGetUserKey
GetFileSecurityW
GetNamedSecurityInfoExW
GetSecurityDescriptorGroup
LockServiceDatabase
QueryServiceLockStatusA
RegEnumKeyA
RegOpenKeyExA
RegUnLoadKeyA
SetSecurityDescriptorSacl

user32

AppendMenuW
ChangeMenuW
EndDialog
EnumPropsA
GetMessagePos
IsCharUpperA
IsDialogMessage
MapVirtualKeyA
SetShellWindow
SetWindowLongA
VkKeyScanExA
wsprintfA

shell32

DuplicateIcon
ExtractAssociatedIconExW
ExtractIconExW
ExtractIconResInfoA
PrintersGetCommand_RunDLLA
SHAppBarMessage
SHFileOperationA
SHFormatDrive
SHGetDataFromIDListW
SHGetDesktopFolder
SHGetSettings
SHLoadInProc
SheChangeDirExA
ShellAboutA

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE