3c491f47bf6f20c57ea9186da739f0e3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3c491f47bf6f20c57ea9186da739f0e3_JaffaCakes118
Size

46KB
MD5

3c491f47bf6f20c57ea9186da739f0e3
SHA1

322620b0fb2cdd857bda586c6a26a8575ab8b9cf
SHA256

120111910c6b999359e04d19981e93aba9b7d33f599e3503e23e493fd46e2831
SHA512

39eaa42fe49643c1ec2328b72d12b92cb7834826db36278f51829bbb59bdadccdf75e20b5bfe2bf3972bcf3ffc6fc6c5a680ba45f5560a87e6072a9f972b1669
SSDEEP

768:4adDteGvxW05nr6ndXTuc+S4TE3mX7DII5i7HdlywTbiFQWI2Fx6uf3:+WJnGnGw3YoI5kHKo+Flrn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3c491f47bf6f20c57ea9186da739f0e3_JaffaCakes118

Files

3c491f47bf6f20c57ea9186da739f0e3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

579f71f37f5c5b4817835a2880fcd2eb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpynA
SetCurrentDirectoryW
WinExec
GetCommandLineA
GetModuleHandleW
WaitForSingleObject
SetEvent
OpenMutexW
GetProcessHeap

user32

SetWindowTextW
GetMenu
GetDlgItem
wvsprintfA
GetSysColor
GetClassInfoA
CreateWindowExA
GetWindowLongW
GetClassInfoExA
GetDesktopWindow
GetWindowLongA

gdi32

CreateBitmapIndirect
SelectObject
StretchDIBits

advapi32

RegCreateKeyExW
RegQueryValueW

comdlg32

ReplaceTextA
ChooseFontW
PrintDlgW
FindTextW
PageSetupDlgA

shell32

StrStrW
StrNCmpA
SHGetDataFromIDListW
ExtractIconEx
ShellExecuteW
SHBrowseForFolderW
SHBrowseForFolderA

ole32

CoGetInstanceFromFile
CoGetDefaultContext

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ