3fa099855bb154a76b3112ffbe34935d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3fa099855bb154a76b3112ffbe34935d_JaffaCakes118
Size

281KB
MD5

3fa099855bb154a76b3112ffbe34935d
SHA1

f08778f9418e31bdf65ae7438f67ba5e05714c1d
SHA256

f0d4d61c2120a0fe414c8b7d0f2177bc4438663f72ec07080f8183560ba727f5
SHA512

6b720e539ac117d233dd4a2b61e154d1eaf1d53d4c7b42b924b5da4c9be72f8fa4dcb286bf2869a7a7ac5a5670fccdf6ede454dc6ca96052ec5091a09b64df85
SSDEEP

6144:nZJJE817p/nV2i7ekAEHE0+9R4hixuOLCWsJaG+GOn/UbKFew:n/u0db6h8Ed9ahi3sabn/Ube

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3fa099855bb154a76b3112ffbe34935d_JaffaCakes118

Files

3fa099855bb154a76b3112ffbe34935d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

011b4e9d41aed6b8152f9d5d171d2b8f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AddAtomA
CloseHandle
VirtualProtect
LoadLibraryW
GetACP
GetSystemTime
TlsFree
GetVersion
ExitProcess
PulseEvent
GetBinaryTypeA
GetLocalTime
FreeConsole
GetModuleHandleA
GetTickCount
GlobalFlags
SetEvent
FindResourceExA
InterlockedExchange
HeapReAlloc
lstrlenA

user32

EnableScrollBar
PostMessageA
GetSubMenu
GetMenuStringA
TranslateMessage
GetWindowLongA
ScrollDC
ModifyMenuA
SetSysColors
DestroyMenu
CopyRect
GetDlgItem
LoadIconA
InsertMenuA
SetWindowPos
GetParent
DispatchMessageA
DialogBoxParamA
SetPropA
MessageBoxA
EqualRect
GetKeyboardLayout
UpdateWindow
ShowWindow
PostQuitMessage
GetMenu
InflateRect
GetWindowTextA
GetScrollRange

shlwapi

UrlCombineA
StrToIntExA
StrToIntA
UrlHashA
StrTrimA

clbcatq

CoRegCleanup

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 640KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ