5d7c5dbf41fc3fe6d55d8bcd2f69d6d4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5d7c5dbf41fc3fe6d55d8bcd2f69d6d4_JaffaCakes118
Size

9KB
MD5

5d7c5dbf41fc3fe6d55d8bcd2f69d6d4
SHA1

317a08500aabe9ce0d24158ee4722475df407518
SHA256

af75d89ed76030b88cf89515932ca907df94b8431c3b0606fea972aa60a46c99
SHA512

02d60592c400212cae42d94f0e00cc48c44c50b2661c9e3abaf995bb2bcf5eb315da0b3ed0ccaa136321f74445d4cf69f813488521bc884b3e006e60e037ae0e
SSDEEP

192:tbHOsopNsi/uQwQrfyF2qkv041dzZQwL+lsN:tLhty9uTAdzZNils

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5d7c5dbf41fc3fe6d55d8bcd2f69d6d4_JaffaCakes118

Files

5d7c5dbf41fc3fe6d55d8bcd2f69d6d4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9dfae3bccc89270c906a6710bfe6a739

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BackupSeek
CreateDirectoryA
CreateDirectoryW
DebugActiveProcess
EnterCriticalSection
EnumResourceLanguagesA
ExitProcess
GetCPInfo
GetCurrentProcessId
GetExitCodeProcess
GetFileAttributesExA
GetPrivateProfileIntA
GetProfileIntA
GetTempFileNameW
GlobalUnlock
Heap32ListNext
SetConsoleTitleA
SetHandleInformation
SetThreadIdealProcessor
TlsSetValue
UTUnRegister
WaitForSingleObjectEx
_hwrite

user32

BroadcastSystemMessage
CloseDesktop
CreateWindowStationW
DdeConnect
DdeFreeStringHandle
DeleteMenu
DialogBoxParamA
DrawFrameControl
EnableScrollBar
GetKeyState
GetMenuState
GetWindowTextLengthA
InsertMenuA
IsDlgButtonChecked
LoadStringA
RegisterClassExA
ReleaseCapture
SetTimer
VkKeyScanExA
WaitMessage
WindowFromPoint

gdi32

AbortDoc
AnimatePalette
CloseMetaFile
CreateCompatibleBitmap
CreateFontW
Escape
GetBrushOrgEx
GetCharWidth32A
GetColorSpace
GetPaletteEntries
IntersectClipRect
OffsetClipRgn
OffsetViewportOrgEx
PaintRgn
PolyDraw
Rectangle
SetMapperFlags
SetPixelFormat
SetPolyFillMode
SetTextJustification
StartPage
UpdateICMRegKeyA

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE