418ba4c3bfb5587080f0240fc5f3844c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

418ba4c3bfb5587080f0240fc5f3844c_JaffaCakes118
Size

429KB
MD5

418ba4c3bfb5587080f0240fc5f3844c
SHA1

b86e58089b331959d95468477844575e3b849fb6
SHA256

20dd678ec7537ca5e3845b48f324bf6a43d6f8561830a8358ab2177ac36ad7b2
SHA512

caabb3ff8099b343cf9b322ff487d7e3ed6629effcebd8d3d146293912ec2dd1bdf46c3dc5ad42e27ea1492ba8baf57b8f2be75aab9ed58d62bcdd37a8b4b6f0
SSDEEP

12288:KAfsr6uR/kMcN6nddt5x0qcBBP1jYR1FyfsM:dfUEN6nFYhRtq1kfsM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
418ba4c3bfb5587080f0240fc5f3844c_JaffaCakes118

Files

418ba4c3bfb5587080f0240fc5f3844c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

209ccc16dd0e82bd10673645650dadf4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalFree
GetACP
GlobalLock
GetModuleHandleA
CloseHandle
IsBadReadPtr
GetConsoleTitleW
LocalFlags
CreateEventA
OpenMutexA
OpenMutexA
GetSystemTime
VirtualProtectEx
GetStdHandle
lstrlenA
LoadLibraryExW
GlobalUnlock
FindClose
GetLastError
FreeConsole

user32

GetMessageA
DialogBoxParamA
ClipCursor
IsMenu
GetMessageA
SetFocus
LoadCursorA
GetParent
EndDialog
GetSubMenu
IsIconic
CreateWindowExA
GetDlgItemTextA
MessageBoxA

uxtheme

GetCurrentThemeName
EnableTheming
DrawThemeBackground
CloseThemeData
DrawThemeText

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ