46c146cb43e1e881c24c5349bbd0ecb3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

46c146cb43e1e881c24c5349bbd0ecb3_JaffaCakes118
Size

452KB
MD5

46c146cb43e1e881c24c5349bbd0ecb3
SHA1

cc6f97149de5aa9f131522dcdae0eb43acc267e3
SHA256

f167fbcfaa50ecfb5b6d998adf5965078960dde35a6d21fdba94d25b8bbcb83a
SHA512

9ccaaf514b85e17097fd3ad7f5388067cd5106430115ed2946c53669f2b83566677617f241766c2816741d273b29ebdb824b242a8522ee954a2a647d5af4d3e1
SSDEEP

3072:IJB08sUx5op2N8Y/RDZI3rU4Lw6hDlhSYEm+tmaPDUnIKKDyMny:IJep2NN/oYt6hLSYUtXPCIKKDvny

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
46c146cb43e1e881c24c5349bbd0ecb3_JaffaCakes118

Files

46c146cb43e1e881c24c5349bbd0ecb3_JaffaCakes118
.exe windows:5 windows x86 arch:x86

dccdc99113c84ae0d042775770febf7d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetScrollInfo
DialogBoxParamA

kernel32

GetCommandLineA
GetLastError
HeapAlloc
GetFileTime
lstrlenA
GetLocalTime
WriteFile
ReadFile
FormatMessageA
GetStdHandle
ExitProcess
FindClose
GetCPInfo
ExitThread
OpenFileMappingA
OpenFile
CopyFileA
DeleteFileW
DeleteFileA
GetPriorityClass
CreateDirectoryA
FreeResource

advapi32

RegCreateKeyA
RegFlushKey
RegEnumKeyW
RegGetKeySecurity
RegOpenKeyA
RegEnumKeyA
RegQueryInfoKeyW

Sections

.d29a4
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.70e3
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.1d25
Size: 381KB - Virtual size: 381KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.eg521
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ