411c85c420b3da7e345e21c6eabde316_JaffaCakes118 | Triage

Sharing

General

Target

411c85c420b3da7e345e21c6eabde316_JaffaCakes118
Size

35KB
MD5

411c85c420b3da7e345e21c6eabde316
SHA1

50e6976d7e1fecc6c0d1550f2bed0c1e3583320e
SHA256

02cf3267123654a4c45d0cc114a70e6ac5353527f19fdf22328305dde4f8e1eb
SHA512

81c8e45c0bc4b0f29268aec40723a4e5ab3d43ef93306757248108235a8f30906bec92ccf8d784cc68635f54a26e45f2fa7cde5dc3251a7a2f9433ae81b873dc
SSDEEP

768:DrGU+uCpCM+EYdfpAtMw74BX1Oe7mSCE7s6b:F+Fft41I4J1OeaAJb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
411c85c420b3da7e345e21c6eabde316_JaffaCakes118

Files

411c85c420b3da7e345e21c6eabde316_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f4aaa53221947575467da7dbebc19976

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcessId
GetCurrentThreadId
GetCommandLineA
GetACP
GetLastError
GetStdHandle
GetVersion
CloseHandle
CompareFileTime
CreateEventW
EnterCriticalSection
ExpandEnvironmentStringsA
ExpandEnvironmentStringsW
FindResourceA
FindResourceW
GetTickCount
Sleep

user32

MessageBoxA

gdi32

BitBlt
CombineRgn
CopyEnhMetaFileW
CreateBitmap
CreateCompatibleBitmap
CreateCompatibleDC
CreateDCW
CreateDIBitmap
CreateDIBSection
CreateFontIndirectW
CreateHatchBrush
CreateICW
CreatePalette
CreatePatternBrush
CreatePen
CreateRectRgn
CreateRectRgnIndirect
CreateSolidBrush
DeleteDC
DeleteEnhMetaFile

Sections

.text
Size: 1005B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 260B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ