3c8127700cb88e1e5d2c7c173a26fe84_JaffaCakes118 | Triage

Sharing

General

Target

3c8127700cb88e1e5d2c7c173a26fe84_JaffaCakes118
Size

13KB
MD5

3c8127700cb88e1e5d2c7c173a26fe84
SHA1

91fa949a59358f050b87cea3a9d2035179938b78
SHA256

1eff4b02ed3850d221b9aff98fb41f5c684d9471f6a3590008718217bdf865c5
SHA512

f1370d5bb486ba9fc205dc5f7e82f7f37f5df6ee60af26ddbd65cc03101cadf8e04dcc6a5ae91b9b09a4469a98c97e3f9e771a11d5aeb8f10c6289bd23769b23
SSDEEP

192:CP/ZlVfxGQiQby8dswbzJVe/Bso83q9RLFo7t7cPMbu+l:CHZLNy8dlzJVe/dOORS7FgMi+l

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3c8127700cb88e1e5d2c7c173a26fe84_JaffaCakes118

Files

3c8127700cb88e1e5d2c7c173a26fe84_JaffaCakes118
.exe windows:4 windows x86 arch:x86

15c2b5c674449a99d9baf9fc6edb4455

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateFileA
EnumResourceNamesA
ExitProcess
FindResourceA
FreeLibrary
GetFileAttributesA
GetFileSize
GetModuleFileNameA
GetModuleHandleA
GetVersionExA
GlobalAlloc
GlobalFree
LoadLibraryExA
LoadResource
LockResource
ReadFile
SetFilePointer
SizeofResource
WriteFile
lstrcatA
lstrcmpiA
lstrcpyA
lstrlenA

user32

wsprintfA
CreateIconFromResourceEx
DestroyIcon
DialogBoxParamA
EndDialog
GetCursorPos
GetDlgItem
GetSubMenu
GetWindowLongA
LoadIconA
LoadImageA
LoadMenuA
LookupIconIdFromDirectoryEx
MessageBoxA
SendMessageA
SetWindowLongA
TrackPopupMenu

shell32

DragAcceptFiles
DragFinish
DragQueryFileA
SHGetFileInfoA

shlwapi

StrRChrA

comdlg32

GetOpenFileNameA

comctl32

InitCommonControlsEx

Sections

.text
Size: 9KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE