34217f0bc15d77130e9628e5579e1d03_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

34217f0bc15d77130e9628e5579e1d03_JaffaCakes118
Size

68KB
MD5

34217f0bc15d77130e9628e5579e1d03
SHA1

f776e3bf3552f67675ddef6766b741ff6beb7c1a
SHA256

da23d24eec41588ad35e663249167d95685ad1756e1c9351780c409bdd45d8a4
SHA512

940dc13f65dd42abff3ee1ad6c9d2794a6f3e7183d593aed77ad91b1c4acbe029de8ffdaeffb43b5e4d5e2e07b15ac4b752c53270e54e85ffb0d5b98365c9eb2
SSDEEP

1536:i8q2EoUcU6GibiKt/zyxjWvkh3hZ4P0lx0+cK9Ody/sv:YjoLU837ypWAZfWGOdy/sv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
34217f0bc15d77130e9628e5579e1d03_JaffaCakes118

Files

34217f0bc15d77130e9628e5579e1d03_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ec688b61c428fb6bffa9f638e3a3ccb9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetExitCodeThread
GetPrivateProfileIntA
HeapFree
PeekConsoleInputA
SetEvent
SetThreadIdealProcessor

advapi32

AddAccessDeniedAce
CryptGetProvParam
DuplicateTokenEx
GetSecurityDescriptorLength
RegEnumKeyA
RegRestoreKeyA
TrusteeAccessToObjectW

user32

AppendMenuW
DispatchMessageW
EditWndProc
GetInternalWindowPos
GetKBCodePage
GetMenuInfo
IsWindowVisible
TrackPopupMenuEx

gdi32

CreateDCW
DeleteColorSpace
ExtFloodFill
GetCharABCWidthsW
GetWorldTransform
ScaleWindowExtEx
SelectClipPath

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE