4dff9c47b1f0e97faa2029d769cf2c4b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4dff9c47b1f0e97faa2029d769cf2c4b_JaffaCakes118
Size

142KB
MD5

4dff9c47b1f0e97faa2029d769cf2c4b
SHA1

99effa7857903809b7d9981b967228af19702274
SHA256

734e691f132b93eb7fa5f2f8f60ab9e2631e920e7e25df6ba16545eb2935513b
SHA512

a33a342bf064bb51085dde46f58e84fa139ce0d59b3d83817b5e29b7d278ef62ac7d6405dc29e76daf89bc7ce63eb76debc1725d440c80af48017e845eab3f5e
SSDEEP

3072:glpqVQ+tS0bXK6CdpQgip27IlUXluB7A7jCh:kpMQFZ6CUgitjB7mk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4dff9c47b1f0e97faa2029d769cf2c4b_JaffaCakes118

Files

4dff9c47b1f0e97faa2029d769cf2c4b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

10e6f8d56244b1a0e2749cbc9c994a4a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetSystemPowerState
GetProfileSectionW
RegisterWowExec
SetConsoleCtrlHandler
GetDriveTypeA
GlobalGetAtomNameW
LockFileEx
GetLongPathNameA
GetPrivateProfileStringW
FindNextVolumeA
TerminateJobObject
GetVDMCurrentDirectories
LocalAlloc
SetTapePosition
GetConsoleCP
FindClose

user32

CopyAcceleratorTableA
InsertMenuItemA
CreateIconFromResourceEx
RegisterHotKey
BeginPaint
RegisterClipboardFormatA
RegisterDeviceNotificationA
VkKeyScanW
DdeUninitialize
DrawFrame
ModifyMenuA
IsWindowUnicode
BroadcastSystemMessageW
ChildWindowFromPoint
EmptyClipboard
GetNextDlgGroupItem
SwitchDesktop

Sections

CODE
Size: 9KB - Virtual size: 237KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 128KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pack32
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ