3e6e31fdca297462127d77055aa88835_JaffaCakes118 | Triage

Sharing

General

Target

3e6e31fdca297462127d77055aa88835_JaffaCakes118
Size

54KB
MD5

3e6e31fdca297462127d77055aa88835
SHA1

91e542b7daec656ed268e1ca148cc6ec876e4a26
SHA256

10cb2854f904fa2fb95f7bb573c31aac6af613e3bf83f5cc204c7674eb3ee585
SHA512

da0fb48e367f11fd78d14d8a87d73880c7123132634fd58c2aa3423420d38ce8433596e00986362d1edf39d28d8ada21600710d68efd6ba5b9bf59465d52497a
SSDEEP

768:3LbeLDsiW+o6nFg4nhgG7eysswBplIlmueTFAjHPgi86K7iD7CWeq7sbXg/:3C7rLnFg49V1wBplIlMTkxmi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3e6e31fdca297462127d77055aa88835_JaffaCakes118

Files

3e6e31fdca297462127d77055aa88835_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e54c9f422148d7e3d426115480ab13c9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EnableWindow
DrawMenuBar
DrawCaption
DispatchMessageA
DestroyCursor
DeleteMenu
DefDlgProcA
CreateIconFromResourceEx
CreateDesktopA
CreateAcceleratorTableA
CopyRect
ChangeMenuA

kernel32

EnterCriticalSection
lstrcpyA
lstrcatA
VirtualAlloc
TlsAlloc
OpenFileMappingA
LeaveCriticalSection
GetStartupInfoA
GetModuleHandleA
GetLocalTime
GetLastError
ExitProcess

Sections

.text
Size: 19KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ