474e58a4b506137d1c54f98f3ff3f7ce_JaffaCakes118 | Triage

Sharing

General

Target

474e58a4b506137d1c54f98f3ff3f7ce_JaffaCakes118
Size

107KB
MD5

474e58a4b506137d1c54f98f3ff3f7ce
SHA1

7e5a1e98163abeb0e0d9c2befa8cc83bf3d15a9d
SHA256

f586b42a60fbf53b26d7fb3e091458d4b6bff5190618e82078b0434ebd0cd876
SHA512

112ea84a00d18326c2711ec43fd9ba266ff676a4f60d25fce751f484b76e8cacb04e5710e50ae4028e402630ca4cd111973931269266a4e7bc9a38cec0f47a40
SSDEEP

3072:0y26v/P6bFO1H5FKcm7o74eR0n2lSIsXL7sfhi:WbqRT1R0JXnsfE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
474e58a4b506137d1c54f98f3ff3f7ce_JaffaCakes118

Files

474e58a4b506137d1c54f98f3ff3f7ce_JaffaCakes118
.exe windows:4 windows x86 arch:x86

742a533ca8a7bf99463a0e53941e067d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CopyFileA
lstrlenA
TryEnterCriticalSection
GetDateFormatW
ReadConsoleOutputCharacterW
VirtualFreeEx
AddAtomA

user32

GetMenuDefaultItem
EnumPropsA
DeleteMenu
SetRect
SetProgmanWindow
ChangeClipboardChain
GetWindowRect
MoveWindow
DestroyIcon
RegisterClassA

shell32

StrChrIW
StrRChrIW
SHGetPathFromIDListW
SHLoadNonloadedIconOverlayIdentifiers

gdi32

StartDocW
GetCharWidthW
EngTransparentBlt
GetWindowExtEx

Sections

CODE
Size: 9KB - Virtual size: 191KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 424B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE