350cfc3d4d469c869297adb6718eeef4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

350cfc3d4d469c869297adb6718eeef4_JaffaCakes118
Size

67KB
MD5

350cfc3d4d469c869297adb6718eeef4
SHA1

6a5584f055b05f255847b402c3bff57157940e6e
SHA256

ce750ea1cf7f0df8bb60ad6e7d3bb96533a2db614e8640b2cc7249d12b524269
SHA512

990ccf755add2376cfa7245ec819b239c7f29f38d7fcae824d88a5f09bdaedff6abbb96dbcf3f059d19187e66347203d2f1cef61eeb1cf51031673d9647f0e10
SSDEEP

1536:/I1wIOLWd3PBcqkWLooPSZWuQUjmGg3XU9QUeY3cy5/qle:/I1wFGp+P80Hb0U93eucy5/Ce

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
350cfc3d4d469c869297adb6718eeef4_JaffaCakes118

Files

350cfc3d4d469c869297adb6718eeef4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

106b6c80a3e42db02e2e70d751260562

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MapVirtualKeyA
DlgDirListA
SendMessageTimeoutW
SystemParametersInfoW
ChangeMenuW
LoadKeyboardLayoutW
CallMsgFilterW
DrawTextA
IMPGetIMEA
OpenDesktopA

kernel32

GetNumberFormatA
SetComputerNameW
WriteConsoleOutputA
FormatMessageA
FindFirstFileA
IsBadStringPtrA
CommConfigDialogW
SetComputerNameW
GetProfileIntW
lstrcmpiA
FindFirstChangeNotificationA
lstrcmpW
GetDateFormatA
EnumTimeFormatsA
CallNamedPipeA
EnumDateFormatsExA
ExpungeConsoleCommandHistoryW
lstrcpyA
CreateMutexA
GetPrivateProfileIntA
CreateSemaphoreA
OpenMutexA
CreateJobObjectA

msvcrt

is_wctype
_wtoi64
_wchdir
_write
ungetwc
_wstrtime
wcspbrk

Sections

.rdata
Size: 58KB - Virtual size: 188KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.DATA
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tasm
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.DATA
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 512B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE