601b5b3e9fcc0b74f139b7ad35279b90_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

601b5b3e9fcc0b74f139b7ad35279b90_JaffaCakes118
Size

47KB
MD5

601b5b3e9fcc0b74f139b7ad35279b90
SHA1

e69dea46ebb4100893c8d1fa75e718981c6fb9ed
SHA256

b96df889d2a2d90f646a1d08c2427927bc55b9986989fa274de1ad32d9f68d38
SHA512

43b962246eafe7a5565db6eaee6285019838bc894520def58a715620253aab357c338b051f712a8f88b02bf97fd68799723f42103cad4cbe3f6df9946a75ef3b
SSDEEP

768:eCQtVIRO38l1eVDdLjo95XFsOJJZ7LfJ6sUk7ZNl6+DtCGLCNDNj:5wSRO3MetIZFsOJzfh6J8Ny6CHj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
601b5b3e9fcc0b74f139b7ad35279b90_JaffaCakes118

Files

601b5b3e9fcc0b74f139b7ad35279b90_JaffaCakes118
.exe windows:5 windows x86 arch:x86

df884bbf20f1f0fee1c0353661780e04

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

CryptGetHashParam

kernel32

lstrcatW

shlwapi

PathCombineW
PathFileExistsW
PathFindFileNameW
StrCmpNIA
StrCmpNIW
wnsprintfW
wvnsprintfA
wvnsprintfW

user32

DispatchMessageA
DrawIcon
EndDialog
GetClassNameA
GetForegroundWindow
GetIconInfo
GetWindowTextA
MsgWaitForMultipleObjects
PeekMessageA
SendMessageA
SetThreadDesktop

Sections

.ipkb
Size: 39KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.jsbkd
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hcd
Size: 5KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ