4ca998088c2d1ee38df65556b084d96f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4ca998088c2d1ee38df65556b084d96f_JaffaCakes118
Size

369KB
MD5

4ca998088c2d1ee38df65556b084d96f
SHA1

4faf394d200bd81353f5f42d67f16fb7cf481072
SHA256

9154c6adc004d319c61a9bbde48d0ed0ddeb14e3714dae3d03b1ea0dcf2d4eca
SHA512

4d91803f46b04109d94a4dcd7c337adfc090d628215e5c4ace84f88eb5503567a0e94fd40e8497b3551659633effd2994050545ddd363a58484d32f4a93a60fe
SSDEEP

6144:t5bfUqol32GmCwt3Ncm1pR2tVAdNqDMYD6k6F1+B8yzxmnvwlKfHVR:XjUbdA3NcGutVAdEDMFhFeEnvwS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4ca998088c2d1ee38df65556b084d96f_JaffaCakes118

Files

4ca998088c2d1ee38df65556b084d96f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e4766fa2788ee1d58436211f3165f4cf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
CreateFileW
UnmapViewOfFile
lstrcpyA
HeapCreate
CreateThread
GlobalUnlock
GetSystemTime
LocalFree
PulseEvent
GetCurrentDirectoryA
lstrlenA
CloseHandle
LoadLibraryW
FindClose
ResetEvent
GetComputerNameA
Sleep
GetCommandLineW
GetTickCount

user32

CheckRadioButton
IsWindow
GetScrollBarInfo
SetFocus
DispatchMessageA
GetKeyState
CallWindowProcA
GetDC
GetDlgItem
FillRect
DrawEdge
DrawMenuBar
CreateWindowExA

cryptui

CryptUIDlgSelectStoreA
LocalEnroll
CryptUIDlgSelectCA
CryptUIDlgCertMgr
WizardFree

timedate.cpl

CPlApplet

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 764KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ