4cc83163b042c86515cb25988e3ecf1a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4cc83163b042c86515cb25988e3ecf1a_JaffaCakes118
Size

316KB
MD5

4cc83163b042c86515cb25988e3ecf1a
SHA1

8c31a5e3bbfa58605b69750efafbcdd9c7f8c5c1
SHA256

768d8986ccfede757beda150036cd6c4cee0500490bd1a671ff3eb7d1c242413
SHA512

2a33489a62522d89b2571b59569785fe29ec0bcf8bf9bb9ebbbea10021825aeb57706115d78cb5e3b46bea1887ae37d4bc8ffd0077d0de2d828e549cdd5df54f
SSDEEP

6144:ahgMbyt+/lFO7UXdj5hcD28Ek5k+6GGv+H1wpZnjZr0J/x:ahgxtAA70R5uq89H6EHe3pUx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4cc83163b042c86515cb25988e3ecf1a_JaffaCakes118

Files

4cc83163b042c86515cb25988e3ecf1a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dc2f5288458fb06771247c9f9d3a98f3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetACP
GetModuleHandleA
GetCurrentThread
GetTimeFormatA
DeleteAtom
VirtualProtect
FormatMessageA
GetExpandedNameA
FlushFileBuffers
GetCurrentProcess
HeapDestroy
OpenSemaphoreA
LoadLibraryA
HeapCreate
IsDebuggerPresent
GetCurrentProcessId
GetThreadPriority
GetEnvironmentStringsA
WriteConsoleA
GetStdHandle
InterlockedExchange

user32

BeginPaint
SetForegroundWindow
GetWindowTextLengthA
GetDlgItem
GetParent
FillRect
EndPaint
ValidateRgn
FrameRect
ShowWindow
GetClassNameA
ReleaseDC
GetWindow
wsprintfA
IsIconic
SetActiveWindow
GetCursorPos
GetFocus
DrawTextA

linkinfo

DestroyLinkInfo
IsValidLinkInfo
GetCanonicalPathInfoA
ResolveLinkInfoA
GetLinkInfoData

version

GetFileVersionInfoA

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 708KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ