5a1c040406e0ea046fba89d32562b27e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5a1c040406e0ea046fba89d32562b27e_JaffaCakes118
Size

340KB
MD5

5a1c040406e0ea046fba89d32562b27e
SHA1

872b24788195a70c4f7576db4d026ec03f93fd56
SHA256

3063955720f412f3d7ab352f98607b5495dd3aa2dcccdbf9f3b1ad8a105a5957
SHA512

7d219f20af54a196e5db238d2b4a9894db49ca22819705882e9f0dff03fd4c1ddad17531bbffaf4702b1370b76a06be26fb7a26847b163dfcc196697252412a0
SSDEEP

6144:1I/YiKfGsGhepHZHtgfaq6o2gzkV9rBOrjaQI7/xAv6fZ0aauwiEUTANBImkU5M:i/0OsAepHZOiMknrBOru7ZwAZ0iEU0Na

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5a1c040406e0ea046fba89d32562b27e_JaffaCakes118

Files

5a1c040406e0ea046fba89d32562b27e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

de5275c3f020e6e186cd02ba42452d05

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
FreeEnvironmentStringsA
GetACP
LocalFree
CreateFileA
FindClose
GetModuleHandleA
CreateFileMappingA
CreateMailslotA
GlobalLock
CreateEventA
GlobalUnlock
GetConsoleCP
HeapCreate
GetStdHandle
IsBadReadPtr
GetLastError
LoadLibraryExA
IsDebuggerPresent
CloseHandle

user32

DispatchMessageA
GetMessageA
GetIconInfo
GetDlgItem
DialogBoxParamA
IsMenu
SetFocus
CheckMenuItem
GetListBoxInfo
GetDC
RedrawWindow
EndDialog
GetDlgItemTextA
DrawIconEx

uxtheme

EnableTheming
GetThemeMetric
CloseThemeData
GetThemeColor
DrawThemeIcon

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ