46e37d3758aef2c04776574a459059d5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

46e37d3758aef2c04776574a459059d5_JaffaCakes118
Size

17KB
MD5

46e37d3758aef2c04776574a459059d5
SHA1

0587a1c9b85e939e68a747cd75e3393d11ca3de4
SHA256

0f259646aca74d786cfa7a69417abbc8c5eb72ed6037e7e0f0ac3a6880d5e6fe
SHA512

e5de5ffb96f4838bb4a701356ce91b89275a38261760bdebedbb61336ae07b5fc2cc3d3c2254f9f07af6a1b9d112ec1bac27114aa971433de60f345b2cebd55d
SSDEEP

384:FRcRHyjbkGpOMzEAlzNZd72G3iJH2Xk3o:werOald72pf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
46e37d3758aef2c04776574a459059d5_JaffaCakes118

Files

46e37d3758aef2c04776574a459059d5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bbfb515d85f54d8f36676df9249f3a05

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SearchPathA
GetAtomNameA
SuspendThread
lstrlenA
GetTickCount
GetModuleHandleA
GetSystemDefaultLangID
HeapReAlloc
CloseHandle
WaitForMultipleObjects
CompareFileTime
InterlockedExchange
GetConsoleCP
SetConsoleCP
HeapCreate
GetCommandLineA
GetStdHandle
GetVersion
GlobalUnlock
WaitForSingleObject
VirtualProtect

user32

GetDlgItem
DispatchMessageA
DialogBoxParamA
DragObject
CopyImage
DrawCaption
EnableScrollBar
GetKeyState
GetCursorInfo
SetScrollInfo
DestroyMenu
FindWindowA
GetKeyboardLayout
InvertRect
CreateMenu
SetPropA
MessageBoxA
CreateIcon
DispatchMessageA
IsDialogMessage
SetWindowPos
InsertMenuA
CreateCursor

advapi32

RegEnumKeyA
RegEnumValueA
RegCloseKey
RegCreateKeyExA
RegQueryInfoKeyA

uxtheme

GetThemeColor

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ