3a722026aadd15ed1c4a4336cb0a1582_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3a722026aadd15ed1c4a4336cb0a1582_JaffaCakes118
Size

313KB
MD5

3a722026aadd15ed1c4a4336cb0a1582
SHA1

e02c91f0ce3a8cf6c04178d46064676781d55167
SHA256

782f6df782bcc606fd500a1d225e2faa4facf13a2de4cd5746998e9d5ef2bf1b
SHA512

848c624766abcd9885e9609543c53599ecb198026bb9c55e82bd39548be0991bb6fe2f701e914f1c4dd591e56c3cf56e02bebb22f7871babeb7202eb3f591ca3
SSDEEP

6144:n4WAJBeSpTfsqf/7+W3xizyaOolQf+S8BGUIXMYL93dbNtxf8hCmMkn9C6:EvJTPszuoCf+SNUIcYh3dptxfBmMv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a722026aadd15ed1c4a4336cb0a1582_JaffaCakes118

Files

3a722026aadd15ed1c4a4336cb0a1582_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2e7a4930410342315bacffb8e7b08188

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

GetDC
ReleaseDC
EnumDisplayMonitors
GetSystemMetrics
EnumWindowStationsW
GetMenuCheckMarkDimensions
SystemParametersInfoA
GetSysColor
GetMonitorInfoA
GetKeyboardLayout

secur32

GetUserNameExW

kernel32

GetModuleFileNameA
GetCurrentProcessId
GetSystemDirectoryW
GetVersionExW
FlushFileBuffers
GetSystemInfo
SetUnhandledExceptionFilter
GlobalFree
LocalFree
GetShortPathNameA
ExitProcess
LocalAlloc
CreateProcessA
OpenMutexA
GetUserDefaultLCID
GetDiskFreeSpaceExW
CreateSemaphoreA
GetTimeZoneInformation
OutputDebugStringA
LoadLibraryExW
CreateMutexA

gdi32

CreateSolidBrush
DeleteObject
GetDeviceCaps
CreateDCA
DeleteDC

Sections

.text
Size: 205KB - Virtual size: 205KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.venue
Size: 5KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ