6544d5f7bcf7e44cb4e5f1aa6a26f3ed_JaffaCakes118 | Triage

Sharing

General

Target

6544d5f7bcf7e44cb4e5f1aa6a26f3ed_JaffaCakes118
Size

814KB
MD5

6544d5f7bcf7e44cb4e5f1aa6a26f3ed
SHA1

ddcc56065de3a8cd16b3d5b9cde1bcd4a2ad6c08
SHA256

87df69f4bcc8d7215d49fb54697b2933a26396fcf1449113f3032e072b693d16
SHA512

cd337bc00c086ae4f2254a74f8d588e281479e94cf34e98ff214784bcc8180691cf0d20ae5f399d657e6d2e05c955436dddd2530288109cf1af8db20edae3db7
SSDEEP

24576:9k7b1fIJGyCXjUKJPVOGMejcFdk49nWCdl:SB4W/5Vvcz/9WE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6544d5f7bcf7e44cb4e5f1aa6a26f3ed_JaffaCakes118

Files

6544d5f7bcf7e44cb4e5f1aa6a26f3ed_JaffaCakes118
.exe windows:4 windows x86 arch:x86

efdff6fba9ae2abcab6d670c64103a4c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapCreate
UnmapViewOfFile
ExitThread
CreateMutexA
HeapDestroy
FindClose
FindResourceA
SetLastError
ReleaseMutex
GetACP
GetModuleHandleA
CreateFileA
GlobalFree
TlsGetValue
GetLastError
LoadLibraryExW
LocalUnlock
Sleep
SetConsoleCursorInfo
FreeEnvironmentStringsA

user32

FillRect
GetDC
DrawEdge
GetFocus
IsWindow
DefWindowProcW
CheckRadioButton
GetDlgItem
DrawMenuBar
DispatchMessageA
GetIconInfo
CopyRect
CallWindowProcA

uxtheme

GetThemeRect
DrawThemeIcon
GetThemeSysInt
DrawThemeText
DrawThemeEdge

clbcatq

SetupOpen

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ