62cf2da5bd4009ee12735cfaf563e26f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

62cf2da5bd4009ee12735cfaf563e26f_JaffaCakes118
Size

175KB
MD5

62cf2da5bd4009ee12735cfaf563e26f
SHA1

482b3f88db8291c131144c83fd539ba4f76e6b2d
SHA256

436983b79701b38d768cf33bad2cd75e3901cb63bc130c136743de32a929bc4b
SHA512

5850db720e8c27cf30a5eccc27423bc419cdfdfdc24975ba491b612b3b679ca461c858a2de51c769be40d04ed9b9ecb0ffcca2839f4c0a4f6e4d81e2637bc91b
SSDEEP

3072:BD807eCVnT+pWZHIAWXlFihaucE7fcXaxC+6TXKysS8toWK53hfJLVlw57BTT:iCxTZZHfWXWauxfSa31S8G+57

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
62cf2da5bd4009ee12735cfaf563e26f_JaffaCakes118

Files

62cf2da5bd4009ee12735cfaf563e26f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bc0f5b32975a44a6fe5cbc6dc29a3d66

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetConsolePalette
EnterCriticalSection
GetProfileStringA
DeleteAtom
GetStdHandle
GlobalAddAtomA
VirtualAlloc
HeapCreate
GlobalLock
GlobalFindAtomA
GetOEMCP
CloseHandle
GlobalUnlock
LocalFree
GlobalFree
RaiseException
LoadLibraryExA
lstrcat
LoadResource
SetCommBreak
GetProcessHeap

user32

GetFocus
GetWindowTextA
ShowWindow
AlignRects
ValidateRect
ReleaseDC
GetWindowTextLengthA
CloseWindow
DrawEdge
GetClassNameA
GetDC
GetActiveWindow
GetClassInfoExA
EndPaint
IsIconic
BeginPaint
GetParent
GetForegroundWindow
GetWindow

wsock32

WSAAsyncGetServByPort
WSAStartup
WSACleanup
WSAGetLastError
WSASetBlockingHook

linkinfo

CreateLinkInfoA

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ