59e0ac90a60d23ad49fab90d2eb3c8b5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

59e0ac90a60d23ad49fab90d2eb3c8b5_JaffaCakes118
Size

277KB
MD5

59e0ac90a60d23ad49fab90d2eb3c8b5
SHA1

25f0ac4e579ea271731968ebd4741c1fda8465f3
SHA256

62865f790ea8076260c5edcaf78c925e3b696a41b8212206bc2366e98295cc88
SHA512

7bc9a5d4c45220f5ee7ee1572f6d3062225b065f22402db7edfa68169abe1a3976edab8f18cc78bd47ea5c96b1247b92dcd78e0373901acc60e5ccf61dda9aa4
SSDEEP

6144:k5KTBKo54EkJEFKCN6kJGMTCmMD0yNvWSMq:kYFfSTJ47N6YvTCmM4OWXq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
59e0ac90a60d23ad49fab90d2eb3c8b5_JaffaCakes118

Files

59e0ac90a60d23ad49fab90d2eb3c8b5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

01d4fb83702d559fdb51d20ef3b4b852

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateEventA
CreateThread
EnterCriticalSection
ExitThread
GetCommandLineA
GetTickCount
GlobalAlloc
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
LocalAlloc
LocalUnlock
ReleaseMutex
SetEvent
Sleep
UnmapViewOfFile
WaitForSingleObject
WriteConsoleA
lstrlenA

user32

CheckDlgButton
GetCursorPos
GetMenuDefaultItem
InsertMenuW
LoadStringW
RegisterClassW
SendMessageTimeoutW
TranslateMessage

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 802B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 262KB - Virtual size: 265KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ