374ff2240d05b4a9b9728ec52bc5ec0c_JaffaCakes118 | Triage

Sharing

General

Target

374ff2240d05b4a9b9728ec52bc5ec0c_JaffaCakes118
Size

177KB
MD5

374ff2240d05b4a9b9728ec52bc5ec0c
SHA1

891d3e650ba7d5d67ec5ae8ccf348c60d1a5f447
SHA256

456053fe9ee9b11bef232754f82a5075f5d963dd438ca3d7bc6e4b8d1cfc052b
SHA512

7a240c26879bcd5bee0e1354b86965d59363668cf2d2ad18441acdd655b0eb0d4e2704fa3ad368e09aba7f401753e29b5cac6af58a6211fe2db3e53878f10ecf
SSDEEP

3072:9yrnEcGcjW9ANemzFuCtjisxkTRGkamzv+BZenB5XEJo6SU9YnXcyLRqjok/d1e3:9MEgi9A44ZxkT9avwb6NRkkK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
374ff2240d05b4a9b9728ec52bc5ec0c_JaffaCakes118

Files

374ff2240d05b4a9b9728ec52bc5ec0c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8f3a8bbf06a925060a13955df7501c7d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

ValidateRgn
ReleaseCapture
RealGetWindowClassA
SetCapture
ValidateRect
InvalidateRgn
ExcludeUpdateRgn
GetCapture
GetUpdateRgn

kernel32

LoadResource
ConvertFiberToThread
GetStringTypeW
LocalFileTimeToFileTime
SetCurrentDirectoryW
FindClose
SetThreadPriority
FileTimeToSystemTime
FreeLibrary
GetLocalTime
CompareStringA
FindNextFileW
FileTimeToLocalFileTime
EnumResourceNamesW
SetErrorMode
FindResourceW
FindFirstFileW
RegisterWaitForSingleObject
SetEnvironmentVariableW
GetShortPathNameW
SystemTimeToFileTime
SearchPathW

Sections

.text
Size: 121KB - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 940B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imul
Size: 512B - Virtual size: 376KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ