46b55d50d6002e4a988995683774c050_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

46b55d50d6002e4a988995683774c050_JaffaCakes118
Size

359KB
MD5

46b55d50d6002e4a988995683774c050
SHA1

077c0a9fda2e7223d45b1cdb9be564413e38d4c0
SHA256

c01d346d72ff67816b8220a6b70cd42c121c544793cea4de86588f1602609504
SHA512

d803af2d52cb70528d7db815ccdb54efb2ac3d8aff11c89688bec0ad33c7bb0d47256c46769b2184477cb31a5ac27246f65789f80aad61ede527855fe130b17c
SSDEEP

6144:UggHb5Wu5ME4Wa2Ez0I8EIGgsVyI2dYblKDsZ00cupI776J6xjoWxwEwr36vZxzK:xuDMMaXukVyI2dA5zcKICgDxvwr36vZk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
46b55d50d6002e4a988995683774c050_JaffaCakes118

Files

46b55d50d6002e4a988995683774c050_JaffaCakes118
.exe windows:4 windows x86 arch:x86

85f3882b0b9cbbd20948c646659cb8f8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReleaseMutex
GetComputerNameW
GetDriveTypeA
GetLocalTime
ExitThread
FindAtomW
GetDiskFreeSpaceW
GetTickCount
LocalFree
CloseHandle
ResetEvent
GetModuleHandleW
LoadLibraryW
CreateFileA
ReleaseMutex
lstrcpynA
GetCommandLineW
HeapCreate
GetTickCount
GetFileAttributesA

user32

GetComboBoxInfo
DispatchMessageA
CreateWindowExA
CallWindowProcA
EndDialog
DestroyCaret
GetClassInfoA
CloseWindow
GetKeyState
GetMenu
GetDlgItem
FillRect
DrawStateA

snmpapi

SnmpTfxQuery
SnmpUtilMemFree
SnmpTfxClose
SnmpTfxOpen
SnmpUtilMemAlloc

modemui

CountryRunOnce

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 436KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 346KB - Virtual size: 345KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ