5fce9025cb510c8a48affb22576503bf_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5fce9025cb510c8a48affb22576503bf_JaffaCakes118
Size

40KB
MD5

5fce9025cb510c8a48affb22576503bf
SHA1

01f16d2e6d3871baa3a0ff66b14c526a4e8f8a98
SHA256

1e4ee95e0762f6d00104d07b582ce2c6599d866b1d36cd7cba01e9cbd39e3bec
SHA512

4f093114bbb780e76a5d5cc3efdaf5c7b94bca311abacf8fb66d3e9ec3779dd7ccc2257a4524acff671ee171116e645ba7832c5fd15dd26fb1066c54b46aabb1
SSDEEP

768:gB0U0Nh322JsS+aAVtG5rWk6XT+MaRKRaIfbBBaCfOpT2FsbSyp/i5:N322eRaAVJXSMgG5jOgOpqcQ5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5fce9025cb510c8a48affb22576503bf_JaffaCakes118

Files

5fce9025cb510c8a48affb22576503bf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ff2004398c39bdd08fee5481fc1dc60c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BuildCommDCBA
CallNamedPipeA
CallNamedPipeW
CreateConsoleScreenBuffer
CreateNamedPipeA
CreateNamedPipeW
DefineDosDeviceW
EnumCalendarInfoExW
ExitProcess
GetExitCodeProcess
GetLocalTime
GetNumberFormatW
GetProfileIntW
GetTapeParameters
GetTempPathW
GlobalSize
Heap32ListNext
LocalFree
OpenMutexW
SearchPathW
SetConsoleActiveScreenBuffer
SetConsoleTextAttribute
SetEvent
SetHandleCount
SetVolumeLabelA
SleepEx
WritePrivateProfileStringA
_llseek

user32

AdjustWindowRect
CharUpperBuffA
CheckRadioButton
CopyAcceleratorTableW
CreateMenu
DdeAccessData
DdeConnectList
DdeQueryStringA
DdeUninitialize
DestroyCursor
DrawFocusRect
GetClientRect
GetDlgItemTextW
GetNextDlgTabItem
GetSystemMenu
HideCaret
LoadIconW
SetFocus
ShowOwnedPopups
TileWindows

gdi32

BeginPath
CombineRgn
CreateBitmap
CreateRectRgn
CreateRoundRectRgn
DeleteEnhMetaFile
EnableEUDC
EndPath
FixBrushOrgEx
GdiFlush
GetDIBColorTable
GetMetaRgn
LineDDA
PlayEnhMetaFileRecord
PlayMetaFile
SetDIBits
SetDIBitsToDevice
SetICMProfileA
SetICMProfileW
SetTextColor
TranslateCharsetInfo
UpdateColors

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 39KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE