4846d74e1c9f852c43e33102ad3dcdaf_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4846d74e1c9f852c43e33102ad3dcdaf_JaffaCakes118
Size

17KB
MD5

4846d74e1c9f852c43e33102ad3dcdaf
SHA1

b77a70f61390fa763d5812a5eb884d2f94feb341
SHA256

9a074bd9bc0be25663e9aa501b7822e687ea21ab8b20b9ecf27a0a1464381858
SHA512

6c4d5cffb6a205c954777d3a7e58229d284cfc6b8c7a2c1b36cafef117af608e39fc935442610be1b099e9965f77b54158fdc8708b74b59e9a03259623315336
SSDEEP

192:6EHv/4EfIc35pC1nEAlsmbXql6/Dl9OCLnJQG3:ZHvD35gpEAlzNZd72G3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4846d74e1c9f852c43e33102ad3dcdaf_JaffaCakes118

Files

4846d74e1c9f852c43e33102ad3dcdaf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b4c62539fd0ca7d0b609017c19615bac

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleCP
GetCommandLineA
GetAtomNameA
GetTickCount
WaitForMultipleObjects
SetConsoleCP
SearchPathA
InterlockedExchange
GetVersion
HeapCreate
WaitForSingleObject
HeapReAlloc
SuspendThread
lstrlenA
GetSystemDefaultLangID
GetStdHandle
CloseHandle
GetModuleHandleA
GlobalUnlock
CompareFileTime
VirtualProtect

user32

FindWindowA
DestroyMenu
EnableScrollBar
InvertRect
IsDialogMessage
GetDlgItem
MessageBoxA
SetWindowPos
CreateCursor
CreateIcon
DrawCaption
GetKeyboardLayout
InsertMenuA
GetCursorInfo
SetScrollInfo
CopyImage
DragObject
SetPropA
GetKeyState
DispatchMessageA
CreateMenu
DialogBoxParamA
DispatchMessageA

advapi32

RegCloseKey
RegEnumValueA
RegQueryInfoKeyA
RegEnumKeyA
RegCreateKeyExA

uxtheme

GetThemeColor

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ