3a17919401b70c66cfb895f22ad1e02f_JaffaCakes118 | Triage

Sharing

General

Target

3a17919401b70c66cfb895f22ad1e02f_JaffaCakes118
Size

775KB
MD5

3a17919401b70c66cfb895f22ad1e02f
SHA1

732225a29717cb90ecd264fde3375ddaab5c8de9
SHA256

dc59b77e14528924052f89950d6bb00bdbb1651260abbb34de5df1ee7b97a063
SHA512

24543181bfb9e32f14f29c9fecb2966b7b5aef148091282257538d950d49ae5605553d2effafa80c12b6bd1c7f19b7e38462db6506ad71b9a6776d1c827c2a59
SSDEEP

24576:3I6asAJPSlLz26ZvZecyTET+J7rx3hBhc:35asAgpBQTEE7rJRc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a17919401b70c66cfb895f22ad1e02f_JaffaCakes118

Files

3a17919401b70c66cfb895f22ad1e02f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fc188424a8c71b46f771cbc86e01fce2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteAtom
GlobalUnlock
CreateMutexA
GlobalFree
SetEnvironmentVariableA
GetExitCodeProcess
HeapCreate
TlsGetValue
GetCurrentThreadId
VirtualQuery
FindResourceA
LoadLibraryExW
lstrlenW
GetModuleHandleA
ReleaseMutex
GetVersion
SetLastError
CloseHandle
CreateFileA
GetStdHandle

user32

CreateMenu
DrawMenuBar
IsWindow
CheckRadioButton
SetFocus
GetIconInfo
GetDC
DispatchMessageA
GetDlgItem
CreateWindowExA
CallWindowProcA
DrawEdge
FillRect

ntshrui

GetLocalPathFromNetResourceA
IsPathSharedA
IsPathSharedW
SetFolderPermissionsForSharing
GetNetResourceFromLocalPathA

msasn1

ASN1BERDecEoid

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 765KB - Virtual size: 768KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE