69370efc61d003d2d600d0485627517a_JaffaCakes118 | Triage

Sharing

General

Target

69370efc61d003d2d600d0485627517a_JaffaCakes118
Size

372KB
MD5

69370efc61d003d2d600d0485627517a
SHA1

7d1dc0d7651e8253293e7ed4d3980a62ad838e47
SHA256

ec1fd22c251f6248be6b37bb2bf6f2bdf35c3bd2aed33b57b6c434a153904920
SHA512

e3cd4c0513d91a4cb9330658432d84d07248577472eed18bf1a4e67bdab47b30970f4476faf6b924877c4d3ef4a2ab2b04d44645b4a32a1969b1c8d617bc1e21
SSDEEP

6144:mqT1jvjVcVAC2FXgEr8fE0ASg3/YQvRNMVlJi41fv4Dw:XvjVkCrSvoZNyl5fwD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
69370efc61d003d2d600d0485627517a_JaffaCakes118

Files

69370efc61d003d2d600d0485627517a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

483aede8443018325350c5bbcb08c7dc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
VirtualAlloc
ReleaseMutex
SetEvent
GetTickCount
FindVolumeClose
LocalFree
GlobalSize
GetExitCodeProcess
GetLocalTime
GetModuleHandleW
ExitThread
CloseHandle
GlobalFree
GetComputerNameW
GetPrivateProfileIntW
FreeConsole
CreateFileW
GetDriveTypeA
ReadFile

user32

GetCursorInfo
GetClientRect
DispatchMessageA
EndDialog
DrawStateW
CallWindowProcA
GetClassInfoA
CreateWindowExA
GetMenu
GetSysColor
SetFocus
GetDlgItem
GetKeyState

clbcatq

DllGetClassObject
ComPlusMigrate
ComPlusMigrate
ComPlusMigrate
ComPlusMigrate

ntshrui

IsPathSharedA

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 424KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 363KB - Virtual size: 362KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ