43047eb6b23b1aaa2904cadf64f24c53_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

43047eb6b23b1aaa2904cadf64f24c53_JaffaCakes118
Size

342KB
MD5

43047eb6b23b1aaa2904cadf64f24c53
SHA1

012f537be9c6bdd0ec6866ec1395ed3573e9083a
SHA256

ebba81c90729059bbeb7eadf9fee0a2627017dce3d8b7c8ec48223d12bf7f943
SHA512

4fbf78bc28b9c2f695b87549a7b67b4b887bec50d4297a0e93b5ac2cbe0c0806a06aaefee6cdedb2923b653176c57026427fa7fca00e5a94fa7955b2099ef73a
SSDEEP

6144:ePtXYveIk44ai9PakfDYtlUKS2pf/xYLcu5NC9wXMq0jKI/gr3tV:gYvDsakbClM2pxYB3CuM/xKtV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
43047eb6b23b1aaa2904cadf64f24c53_JaffaCakes118

Files

43047eb6b23b1aaa2904cadf64f24c53_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b8549f6385a2981cac1f1f8407280a2a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMailslotA
GlobalUnlock
IsDebuggerPresent
GetModuleHandleA
GetACP
HeapCreate
GlobalLock
GetConsoleCP
LoadLibraryExA
CreateFileA
CreateEventA
IsBadReadPtr
FindClose
FreeEnvironmentStringsA
GetStdHandle
CreateFileMappingA
CloseHandle
lstrlenA
GetLastError
LocalFree

user32

CheckMenuItem
GetDlgItemTextA
RedrawWindow
SetFocus
DialogBoxParamA
GetIconInfo
DispatchMessageA
EndDialog
GetListBoxInfo
GetDC
GetDlgItem
GetMessageA
IsMenu
DrawIconEx

uxtheme

GetThemeColor
GetThemeMetric
CloseThemeData
EnableTheming
DrawThemeIcon

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ