692ba83cca683cb2fc6d110d29e1c084_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

692ba83cca683cb2fc6d110d29e1c084_JaffaCakes118
Size

193KB
MD5

692ba83cca683cb2fc6d110d29e1c084
SHA1

61179851df749937495992e9a5dad198dead11ae
SHA256

8746b86e12f4952af82a80dca02d69c318bd575203ef44b26c0c316a0f49cd74
SHA512

f92cab31061c17fce8defeaaa89d298d456179eb406cbb0a394747a7dd1ebfa50e26233f674aee11393feade164038ca86917fba06f9344b28f5c8bc6de6fcc9
SSDEEP

6144:u60666666egggggggggggggE6Aj4KmMHfpGRlAMaYZdpCd8H/kS:uf666666q6fK3/pGoMaYZdAqk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
692ba83cca683cb2fc6d110d29e1c084_JaffaCakes118

Files

692ba83cca683cb2fc6d110d29e1c084_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6611a5f1dae1103f7274ddd93f499740

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
InterlockedExchange
GetConsoleCP
HeapCreate
GetVersion
LoadLibraryExW
GetTickCount
lstrlenA
CloseHandle
AddAtomA
SuspendThread
CompareFileTime
GlobalUnlock
WaitForMultipleObjects
GetSystemDefaultLangID
WaitForSingleObject
VirtualProtect
HeapReAlloc
GetStdHandle
GetModuleHandleA
GetProfileIntA

user32

DragObject
FindWindowA
CopyRect
MessageBoxA
SetScrollInfo
GetKeyState
DialogBoxParamA
GetCursorInfo
GetDlgItem
IsDialogMessage
CopyImage
DrawCaption
CreateCaret
GetKeyboardLayout
InvertRect
InsertMenuA
CreateCursor
CreateIcon
SetPropA
SetWindowPos
DispatchMessageA
CreateMenu
DestroyMenu
EnableScrollBar

advapi32

RegCreateKeyExA
RegEnumKeyA
RegQueryInfoKeyA
RegCloseKey
RegEnumValueA

apphelp

GetPermLayers

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 272KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 540KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ