5e3959140ee7330e3f61c395079289ae_JaffaCakes118 | Triage

Sharing

General

Target

5e3959140ee7330e3f61c395079289ae_JaffaCakes118
Size

43KB
MD5

5e3959140ee7330e3f61c395079289ae
SHA1

8f7470c23fa9019aec5ae766425c070496af0389
SHA256

5ad9a7b4439391a937c5f1a1643456a430441b46e84afcee8e7c7e248be61329
SHA512

81b80e9ecb72594eaadf0a699bece8efd8d4a0cfb514a171e2ba88e73d0644f56d9c442445570950d7a411ac75e397b08c890548078f7ea671afac73b2ba3cd7
SSDEEP

768:Ka6J6pXERhY799izQXD5rV8ymT6pAMFys4FoE20usGbk:KT4XmhDkXNVfhD5E20udbk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5e3959140ee7330e3f61c395079289ae_JaffaCakes118

Files

5e3959140ee7330e3f61c395079289ae_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a97305ca3432fd6f6041d408e7129024

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
GetModuleHandleA
HeapCreate
GetStdHandle
GetTickCount
WaitForMultipleObjects
GetVersion
GlobalUnlock
CompareFileTime
SuspendThread
GetConsoleCP
lstrlenA
SetConsoleCP
GetCommandLineA
InterlockedExchange
CloseHandle
HeapReAlloc
VirtualProtect
GetAtomNameA
GetSystemDefaultLangID
LoadLibraryExA

user32

GetKeyState
FillRect
InvertRect
DrawCaption
GetCursorInfo
DispatchMessageA
SetPropA
DialogBoxParamA
DragObject
CreateIcon
DestroyMenu
CopyImage
EnableScrollBar
SetWindowPos
GetKeyboardLayout
SetScrollInfo
FindWindowA
CreateMenu
IsDialogMessage
GetDlgItem
InsertMenuA

advapi32

RegCloseKey
RegQueryInfoKeyA
RegCreateKeyExA
RegEnumValueA
RegEnumKeyA

apphelp

ApphelpCheckExe

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 804KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ