43160855b509402121e08ac9de3dddb7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

43160855b509402121e08ac9de3dddb7_JaffaCakes118
Size

774KB
MD5

43160855b509402121e08ac9de3dddb7
SHA1

e38793e19ab94b85cbc0d55af8f9a84995d2a968
SHA256

8400e0dcd62b58ec65da2dac70b5d605eb3bb8df52ad192510fe42aed35227fd
SHA512

a993ee770d058674cdc7902e50c26055ea29538e95d5b906b9df64715cd5f90258615a34fd74559ab5bc8c077015808b8b67eaa41c10a3e2e15fadc49d0684ad
SSDEEP

24576:vYSuUmpXnRfB0mdrPVZY3T13bJzR+404asEN6WQBJOcWds89wV:vY/Ttb0ydc13b6w9WeJCtc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
43160855b509402121e08ac9de3dddb7_JaffaCakes118

Files

43160855b509402121e08ac9de3dddb7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

96357272daba92d4b025b5c1a3f96e73

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileW
GetComputerNameA
LocalFree
GlobalUnlock
GetSystemTime
GetModuleHandleA
LoadLibraryW
UnmapViewOfFile
CloseHandle
CreateThread
HeapCreate
PulseEvent
GetCommandLineW
FindClose
GetCurrentDirectoryA
ResetEvent
lstrcpyA
GetTickCount
lstrlenA
Sleep

user32

GetScrollBarInfo
IsWindow
GetDC
FillRect
GetDlgItem
DispatchMessageA
SetFocus
CheckRadioButton
DrawEdge
CallWindowProcA
CreateWindowExA
GetKeyState
DrawMenuBar

cryptui

CryptUIDlgSelectCA
CryptUIDlgSelectStoreA
CryptUIDlgCertMgr
WizardFree
LocalEnroll

timedate.cpl

CPlApplet

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE