62e5b7201652c6d8ae7c16f84d514ee4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

62e5b7201652c6d8ae7c16f84d514ee4_JaffaCakes118
Size

340KB
MD5

62e5b7201652c6d8ae7c16f84d514ee4
SHA1

722e25e7e7651b44fba07b9562a709641e11745a
SHA256

51c44919b9617335ca709598bc5cfd04d1386926113caae83244f7add8d19724
SHA512

adf1519d5df2274cdd1817fc0832b53d7226aca200cfd29b34feb88774361e981cc7b57f156cf1dd39be5402e8d15c182c11103da2806ac4ff4c022bbcedc5ca
SSDEEP

6144:aQPadXWn1DIRRuWCDOpNJMhP7tLCo8TyHaZs7Z3RrzWsNNJICY:GmnSTujayt77TQkXWsNNPY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
62e5b7201652c6d8ae7c16f84d514ee4_JaffaCakes118

Files

62e5b7201652c6d8ae7c16f84d514ee4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b7e23fdb5a3781c4d03e39ed2df388f9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
GetModuleHandleA
GlobalLock
LoadLibraryExA
CreateFileMappingA
CreateEventA
GetConsoleCP
GetLastError
GetACP
lstrlenA
FindClose
CreateWaitableTimerA
GlobalUnlock
CreateFileA
IsBadReadPtr
FreeEnvironmentStringsA
IsDebuggerPresent
LocalFree
GetStdHandle
HeapCreate

user32

DialogBoxParamA
SetFocus
CheckMenuItem
DispatchMessageA
GetMessageA
EndDialog
GetDlgItem
ClipCursor
IsMenu
GetDlgItemTextA
GetParent
RedrawWindow
GetSubMenu
DrawIconEx

apphelp

SdbCloseDatabase
ApphelpCheckIME
SdbFindFirstTag
ApphelpCheckRunApp
ApphelpShowDialog

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ