3fb00bd563f74e1b76973a84cc1e68d3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3fb00bd563f74e1b76973a84cc1e68d3_JaffaCakes118
Size

100KB
MD5

3fb00bd563f74e1b76973a84cc1e68d3
SHA1

df00df69656c8bab4afd31d45ca33f9a2bef4be1
SHA256

1f58e17c53082b3a5ef20fb59a916822dc948b9920455451f32f56e78b5b7143
SHA512

c430282a07450e8152b144eb6543291f843cd9b9c16237ebac2faf01dab83e46a156ec0c155a1fc460a1607b0aa4e9a063eed01b9fffe94849ffdc8b8e7df257
SSDEEP

3072:JKtFqP1K/Gh60DyJYBUdxlZdEN73zPcAWy:JKtFqdXh6iyJ6UdxlZq73zPcr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3fb00bd563f74e1b76973a84cc1e68d3_JaffaCakes118

Files

3fb00bd563f74e1b76973a84cc1e68d3_JaffaCakes118
.exe windows:5 windows x86 arch:x86

509744d40d7e64e6d854f7f605e71473

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetThreadDesktop
GetWindowThreadProcessId
GetActiveWindow
IsCharAlphaA
SetDlgItemTextA
EnumWindows
DialogBoxParamA
MessageBoxA
EnumDisplaySettingsA
SetWindowTextA

ole32

CoGetCallerTID

comctl32

InitCommonControlsEx

advapi32

RegOpenKeyExA
RegCloseKey
RegQueryValueExA

kernel32

GetTimeFormatA
IsValidLocale
GetDateFormatA
ExitProcess
HeapAlloc
IsValidLanguageGroup
GetTickCount
GetLocalTime
GetStartupInfoA
HeapDestroy
HeapFree
HeapCreate
LoadLibraryA
FreeLibrary
GetProcAddress
DeleteCriticalSection
InitializeCriticalSection
LocalFree
IsBadReadPtr
LocalAlloc

Sections

.text
Size: 91KB - Virtual size: 90KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ