692f9b7029b867934cfb0ce7f994d5f7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

692f9b7029b867934cfb0ce7f994d5f7_JaffaCakes118
Size

92KB
MD5

692f9b7029b867934cfb0ce7f994d5f7
SHA1

1ff011dd26f3d77b2573ae4ffba8fdfb40d7d217
SHA256

f470846fc183794f40637b789162fd297f5a99cf9eb476eb4115bc0fe1f5a2e2
SHA512

8c8289f3eede9d76c82bce632c28e0c962bdd0a8f313a4c51ff613ed38b3e9ad55e5924b6a7d2803e34b55e8a2096802ed2897c6eb9f7fc268b81d365eba8402
SSDEEP

1536:HUqkw/OYBCDVZC6iaYXcnk737NZiaQ8EpIGkbzdW8hT/W0/V2hX9GD0a2pl/IyiG:0OOYBCD1NkuvkbzIQW0/UX9Ay7zP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
692f9b7029b867934cfb0ce7f994d5f7_JaffaCakes118

Files

692f9b7029b867934cfb0ce7f994d5f7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0b0dd23e909dfb9249804d10e836b037

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DispatchMessageA
DialogBoxParamA
CreateMenu
CreateMDIWindowA
CreateIcon
CharUpperBuffA
CharUpperA
CharToOemA
ChangeMenuA

kernel32

GetSystemTime
lstrlenA
lstrcpyA
lstrcmpiA
lstrcatA
VirtualAlloc
TlsFree
SleepEx
SetLastError
RtlUnwind
CloseHandle
EnumResourceLanguagesA
EnumResourceNamesA
EnumResourceTypesA
GetLastError
GetPrivateProfileStringA
GetStartupInfoA
GetTimeFormatA
GetVersion
LoadLibraryA
MapViewOfFile
OpenFile
OpenFileMappingA

Sections

.text
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE