3faf6fd5f00211763fb1d946c6266e82_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3faf6fd5f00211763fb1d946c6266e82_JaffaCakes118
Size

175KB
MD5

3faf6fd5f00211763fb1d946c6266e82
SHA1

d37d5fc7721e0c8d428369781872d59717b6d77d
SHA256

c3123dc9e2f6add3fe49cd9f277dd73dbd319db78f20e6d8687a2d27efb10013
SHA512

a4d40d7f09ff8a61e5611e65d1f24c3b0ffd927f59b878a639b1dfd466c2e433af3f46431e36f85b91031517a8888a7a548c78aad576e930dbeb731292ff21d9
SSDEEP

3072:ND3Kag+o0RJQcszk84c+Yqs5eS3E5fcam22H/rtQzOUoiSO4+P4BfbhkHp21:T60R+csI7Nk8iE5fcacz6aVR+P4BTb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3faf6fd5f00211763fb1d946c6266e82_JaffaCakes118

Files

3faf6fd5f00211763fb1d946c6266e82_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5eaf2b6394ef9bd3bb164a1a3dae9d1d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
GlobalFree
LocalFree
DeleteAtom
WriteProfileStringA
GlobalAddAtomA
RaiseException
VirtualAlloc
HeapCreate
GlobalUnlock
lstrcat
LoadLibraryExA
EnterCriticalSection
GetLastError
GetOEMCP
SetCommBreak
GetStdHandle
LoadResource
IsBadCodePtr
SetConsolePalette
GlobalAddAtomA

user32

GetForegroundWindow
EndPaint
GetWindowTextLengthA
GetWindowTextA
CloseWindow
ReleaseDC
GetWindow
GetParent
AlignRects
ShowWindow
BeginPaint
GetFocus
IsIconic
GetClassNameA
GetClassInfoExA
GetActiveWindow
ValidateRect
GetDC
DrawEdge

wsock32

WSAStartup
WSAGetLastError
WSACleanup
WSASetBlockingHook
WSAAsyncGetServByPort

linkinfo

CreateLinkInfoA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ