3ce87b5da9004f9ae86889a9702c7821_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3ce87b5da9004f9ae86889a9702c7821_JaffaCakes118
Size

45KB
MD5

3ce87b5da9004f9ae86889a9702c7821
SHA1

4024c49390e28fcdf3844b5f662d7a5caed0ebae
SHA256

295c1890cc00da3be59f4f8b70716d82d48e2bc860868692eebe1309888350a4
SHA512

a5d305f572cead6930a574626d90c371467e56dd8605abd0daddfe20c27120b286bb49d78c4cfcf445daedb9adf31318179f881c821771f97f2711ebb2411947
SSDEEP

768:E8vXjsb1raxwuscsPvkkfasOGYhzeAvFwDqjDQ+eykg26CXQM3iJcmP6:3GWxVscs35fBYhzXvoS0+ef58P6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3ce87b5da9004f9ae86889a9702c7821_JaffaCakes118

Files

3ce87b5da9004f9ae86889a9702c7821_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6f60ea6b503395d1a5feb3ccaa9a7a12

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBeep
MessageBoxA
DialogBoxParamA
LoadIconA
ArrangeIconicWindows
CharUpperA
GetClassLongA
IsIconic
CharNextA
DestroyIcon
GetSystemMetrics
RegisterWindowMessageA
ShowWindow
EnableWindow
SetCursorPos
CharLowerA
KillTimer
GetSysColorBrush
ShowCursor
SetWindowTextA
GetMenuItemCount
ReleaseDC
GetParent

kernel32

GlobalFindAtomA
FreeLibrary
GetProcAddress
LoadLibraryA
lstrcatA
GlobalDeleteAtom
FreeConsole
Sleep
GetLastError
GlobalAddAtomA
OutputDebugStringA
CopyFileA
FindResourceA
GetConsoleOutputCP
lstrlenA
GetCommandLineA

shell32

ShellAboutA

gdi32

GdiGetBatchLimit
CreateCompatibleDC
GdiFlush
SelectObject
DeleteDC
DeleteObject
EndPage
CreateSolidBrush
SetBkMode

ole32

CoFreeUnusedLibraries
CoFreeAllLibraries

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ