34e87cf143b783604c2ee77c00579040_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

34e87cf143b783604c2ee77c00579040_JaffaCakes118
Size

25KB
MD5

34e87cf143b783604c2ee77c00579040
SHA1

9e6af3da9565c1aec9ff674cbebcd5dc88a47ba2
SHA256

9fb623fdad3f26165953efacb28a71a959a3bf6711310427bac4465204cb9ad4
SHA512

7235cd190f9b650af44525acf4601c38d015ba6fcec7a3464546948ba822948f2073115178c2bdaebe5f087d5d2fc7e4478ef85290fa42068b06aadf51187c54
SSDEEP

384:MafNfaZxFiUkq9vpPwPiVZ3QEUoEe03wTIWt/k6A8A5HkMN+3QMf:LfNf0xFiUvvpPUiVZ30AXur8vo+37

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
34e87cf143b783604c2ee77c00579040_JaffaCakes118

Files

34e87cf143b783604c2ee77c00579040_JaffaCakes118
.exe windows:4 windows x86 arch:x86

725285290e94ed001341446aaf279fc2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVolumePathNameW
GetThreadSelectorEntry
GetExpandedNameA
ExpungeConsoleCommandHistoryA
ResetWriteWatch
SetFileShortNameW
AddAtomA
GetProfileStringA
SetFileValidData
ExpungeConsoleCommandHistoryW
GetDateFormatW
TerminateThread
SetConsoleCursorMode
GetConsoleAliasExesLengthW

user32

GetGUIThreadInfo
RealGetWindowClass
SetClipboardData
InternalGetWindowText
DdeSetQualityOfService
GetWindowThreadProcessId
GetDoubleClickTime
SetDlgItemTextW
RealGetWindowClassW
VkKeyScanExA
QuerySendMessage
GetDlgItemTextA
SwitchDesktop

Sections

.text
Size: 22KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ