43247aefa9cb3d532a5a7c60905b9298_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

43247aefa9cb3d532a5a7c60905b9298_JaffaCakes118
Size

393KB
MD5

43247aefa9cb3d532a5a7c60905b9298
SHA1

07b64ff40f40ada2f0494445be58a2bb5ec4d400
SHA256

db5a88a3f5e57e639f0e5b4a2a1f3e3d6e004046a8cbfe43e5404aaf303263ae
SHA512

4ec211318228f471008c04396100f7d1574f0d003a5ab491d7a3c36e51ad051344b2390dddcdfd5d2adde398c1ba8c46b8ca373c753eac781aea8fc08d0a1a46
SSDEEP

12288:ayJY9pdmxwRWwcVGzWd0f6nZU4hZo8ydktttttttttttttDDs5:ayJOfWwWGzUrbOYDs5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
43247aefa9cb3d532a5a7c60905b9298_JaffaCakes118

Files

43247aefa9cb3d532a5a7c60905b9298_JaffaCakes118
.exe windows:4 windows x86 arch:x86

db3fac492fa17d01f5089e97d3b52760

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalUnlock
CloseHandle
ExitProcess
TlsGetValue
LocalFree
lstrlenA
HeapDestroy
GetACP
GetModuleHandleA
MapViewOfFile
CreateFileA
FindAtomA
Sleep
FreeEnvironmentStringsA
LoadLibraryExW
HeapCreate
GetLastError
CreateMutexA
SetupComm
FindClose

user32

GetDlgItem
DrawEdge
CallWindowProcA
GetIconInfo
DefWindowProcW
DrawMenuBar
GetDC
GetFocus
CopyRect
CheckRadioButton
IsWindow
FillRect
DispatchMessageA
MessageBoxA

uxtheme

DrawThemeText
GetThemeRect
DrawThemeIcon
DrawThemeEdge
GetThemeSysInt

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ