46a2edb32add4e0e6b2158a38326a741_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

46a2edb32add4e0e6b2158a38326a741_JaffaCakes118
Size

317KB
MD5

46a2edb32add4e0e6b2158a38326a741
SHA1

b96ff784f4a8d24feb69e4aaf22a9ae54fff606a
SHA256

ac067479c803aed91df5f5bc93994c2fafbf2fd71a61a83d5d47e7ef049fd17b
SHA512

f8f3d812588deb6404e5c5a82ea20ff17bd212546d728d7ea712adee6bf2ac2b11d7c1cbe6f5ff59f537c4b4f683c10f04172d2e3106ca7f5e3f10a026ec09bb
SSDEEP

6144:YGgE+KoT4mSdtwm2zhwLkQ2NVzHS2EZQXhIOkOQpO5LH03YzyT:YGp+94Zjwbzhm2nynoFztbzyT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
46a2edb32add4e0e6b2158a38326a741_JaffaCakes118

Files

46a2edb32add4e0e6b2158a38326a741_JaffaCakes118
.exe windows:4 windows x86 arch:x86

84d77e3e22be3932bc6787d98cafd260

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA
GetDC

kernel32

GetModuleFileNameA
GetEnvironmentVariableA
ExitProcess
FormatMessageA
GetLastError
SetLastError
GetProcAddress
VirtualProtect
LoadLibraryA
GetModuleHandleA
MultiByteToWideChar
GetModuleFileNameW
GetVersionExA
VirtualFree
VirtualAlloc
GlobalAlloc
SetFilePointer
ReadFile
CreateFileA
LoadLibraryA

advapi32

RegCloseKey

comctl32

ImageList_Add

gdi32

SaveDC

oleaut32

VariantCopy

version

VerQueryValueA

Sections

.text
Size: 19KB - Virtual size: 476KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE