63f079f2dc6b8e52fdcb4972db8236fe_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

63f079f2dc6b8e52fdcb4972db8236fe_JaffaCakes118
Size

52KB
MD5

63f079f2dc6b8e52fdcb4972db8236fe
SHA1

d615e25cf40c97551b37430a9d712f3142127c27
SHA256

0d8f5ecea86de643e9cdc7b5483b916a8b6988f7cb44ec365506e7d87f46918d
SHA512

3421b64ba607a3475a68b4fc77bee05fb08ead58635adc2527512d287f7e7af7fe96c165a0bba8802857e3579612be2935e86672db7ecd4ae9fe165ccb9d6bff
SSDEEP

1536:0cv0vNTh+Nm+BEFqYpNRTTBUe1L7Yj/QYqE:0csL4lBaTBX9NlE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
63f079f2dc6b8e52fdcb4972db8236fe_JaffaCakes118

Files

63f079f2dc6b8e52fdcb4972db8236fe_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f3e7dd02233a1d89ac0ded71f8315231

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
ExitProcess
FindResourceA
GetACP
GetCommandLineA
GetEnvironmentVariableA
GetModuleHandleA
GetOEMCP
GetStartupInfoA
HeapAlloc
HeapCreate
LoadResource
MultiByteToWideChar
RtlUnwind
SetLastError
SetStdHandle
SetUnhandledExceptionFilter

msvcrt

wcscpy
_cexit
_exit
fwprintf
malloc
printf
setlocale
sscanf
time
wcscmp
wcscat

user32

CloseClipboard
SetScrollInfo
SetForegroundWindow
SetFocus
SetClipboardData
GetMenu
FrameRect
EnableWindow
CreateIconIndirect

oleaut32

OleIconToCursor
SafeArrayAllocDescriptor
OleLoadPicture

shlwapi

PathBuildRootA
PathGetCharTypeA
ChrCmpIA
SHDeleteValueA
SHEnumKeyExA
PathAppendA
PathFindOnPathA
SHOpenRegStreamA

Exports

Exports

ServerGetApplicationType

Sections

.text
Size: 41KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ