67e8fb3b04da26800d750f4f834fcd2f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

67e8fb3b04da26800d750f4f834fcd2f_JaffaCakes118
Size

156KB
MD5

67e8fb3b04da26800d750f4f834fcd2f
SHA1

bf300beab4782b7cfa78d20328fdea9b991bc32c
SHA256

eb23ca5fca7c611f9d60f52af53e668697fe3cca3db55a389d405429647f2424
SHA512

18fc77fcd61b3932adb47f42a00b4f6348bc7f2714d2486dea317528b060ff6b1396f1389fc9fc92f19217f097e13d24c44d65a13ac72b091650b5b9dffb0f4e
SSDEEP

3072:spzprjhy/PhWg/du34psGBapzTjQCQ0qPAY02N0ssNUgmN4SRNYDpOnMSTeigCX/:KJjcHhBldpIzQCQ0sA2HsNlmNDRmwSCI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
67e8fb3b04da26800d750f4f834fcd2f_JaffaCakes118

Files

67e8fb3b04da26800d750f4f834fcd2f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2a7935008687704b0912e6dd70753cd8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

RegisterClassExW
GetUpdateRgn
LoadCursorW
GetWindowInfo
MessageBoxW
CreateWindowExW
GetDC
EndDialog

oleacc

LresultFromObject

kernel32

FindFirstVolumeA
GetStartupInfoA
GetPriorityClass
ProcessIdToSessionId
EnumResourceTypesA
InitializeCriticalSection
TlsFree
TlsGetValue
TlsAlloc
GetFileType

Sections

.text
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 616B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.apexi
Size: 1024B - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ