3739e554fab6554af8a6e7ec5bfa8078_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3739e554fab6554af8a6e7ec5bfa8078_JaffaCakes118
Size

20KB
MD5

3739e554fab6554af8a6e7ec5bfa8078
SHA1

eabf538a842b7da0e7bba25a4a9f476a47c84782
SHA256

45aa61243f3bbb44c13555fbc0ff13d9052fb3cc1608852f5e2cd2929f493c58
SHA512

9de724298cd4c6d1844c8cd23738189e4b5a9f5e258b4130a61b3ef7aec7fd9ff33a687f452c3a2a67f598f03e43594740a35c05b25124997ecb734670711fa2
SSDEEP

384:jCDxOA7gK3xkcvPqrqW/FO/CXWWKQPfeXgp7rOx:jCDxR7gKBkcvi+UcQ/f/p7ro

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3739e554fab6554af8a6e7ec5bfa8078_JaffaCakes118

Files

3739e554fab6554af8a6e7ec5bfa8078_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ab867259869e18334f4ed31b5d58b7ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemDefaultLangID
HeapCreate
CompareFileTime
TlsFree
GetVersion
TlsGetValue
GetProfileIntA
lstrlenA
GlobalUnlock
InterlockedExchange
LoadLibraryA
GetStdHandle
VirtualProtect
AddAtomA
CloseHandle
GetConsoleCP
WaitForMultipleObjects
GetModuleHandleA
GetTickCount
HeapReAlloc
WaitForSingleObject

user32

GetKeyboardLayout
PostMessageA
MessageBoxA
DestroyMenu
SubtractRect
GetMenu
DialogBoxParamA
EnableScrollBar
ModifyMenuA
DispatchMessageA
TranslateMessage
ShowWindow
UpdateWindow
InsertMenuA
GetWindowTextA
EqualRect
PaintDesktop
LoadIconA
GetDlgItem
CreateCaret
CopyRect
GetMenuStringA
SetPropA
SetWindowPos
InflateRect

msi

MsiEnumProductsA
MsiGetMode
MsiEnumClientsA
MsiDoActionA
MsiCloseHandle

ws2_32

WSAAccept

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ