487c480af24932715ac76f53c5c6065b_JaffaCakes118 | Triage

Sharing

General

Target

487c480af24932715ac76f53c5c6065b_JaffaCakes118
Size

813KB
MD5

487c480af24932715ac76f53c5c6065b
SHA1

cd5d7611a63b17582fed9c8113d07d867008d5e7
SHA256

80893ae99a257f1ad07059e37a0e87f6d483d74ec7cfa106b83e6b531b06ca87
SHA512

03877bfd7c40105615edfcc717c893ae8e00e2f5be403d696d38d4371a27c6c677334fd820bb077619e90b75221eda1a2382332453802c58891d44dc78bd028c
SSDEEP

24576:kTcR01YZb/LRDs11hPAoJmaxi6KPfAGrj:kIJwPfma06KPn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
487c480af24932715ac76f53c5c6065b_JaffaCakes118

Files

487c480af24932715ac76f53c5c6065b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6224d45b78760f86541dd20c1a03512a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalFree
WaitForSingleObject
FindClose
LocalLock
CreateEventA
GetModuleHandleA
LoadLibraryExA
HeapCreate
IsBadReadPtr
CloseHandle
GetLastError
TlsGetValue
FreeEnvironmentStringsA
LocalUnlock
GetStdHandle
GetACP
CreateFileA
GetConsoleCP
CreateFileMappingA
IsDebuggerPresent

user32

GetIconInfo
SetFocus
IsWindow
ScrollWindow
EndMenu
PostMessageA
DefWindowProcA
DispatchMessageA
GetDlgItem
GetDC
CreateDialogParamA
EmptyClipboard
GetMessageA
DrawIconEx

msasn1

ASN1BERDecCheck
ASN1BEREncLength
ASN1BERDecEoid
ASN1BERDecBool
ASN1BEREncFlush

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ