730b7af891e062bd38e1ac1335dc8db8_JaffaCakes118 | Triage

Sharing

General

Target

730b7af891e062bd38e1ac1335dc8db8_JaffaCakes118
Size

322KB
MD5

730b7af891e062bd38e1ac1335dc8db8
SHA1

654ee56c15462540474229416f7d9f28282bf45a
SHA256

873a99feef6635e086ab0ba5a49396924bbbb59b8128fdeceea5d516d22148bf
SHA512

bbc57d9035e170799576ee4b0a4cf17c4c2ef24102842d510cd42619039d8835911c7725645231fa8b1b1e8837c684784d1a4348bec8f5af374aa645569cd520
SSDEEP

6144:77dVhzctJoYKS6/TJ80uIe1NF/5dVI4vYXbuleeehcJY1CZ/Hko8ZjJjsXPpPkYs:77dctJM/TJXe1RLYrutehGZ/v6JAXhMF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
730b7af891e062bd38e1ac1335dc8db8_JaffaCakes118

Files

730b7af891e062bd38e1ac1335dc8db8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

45d1a446acb1c1bd3173e76ac31a5596

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFree
CloseHandle
SetErrorMode
GetLastError
Sleep
GetLocaleInfoA
VirtualProtect
GlobalUnlock
FoldStringA
LockResource
GetDriveTypeA
InterlockedExchange
LoadLibraryExA
SetConsoleOutputCP
GlobalAddAtomA
HeapCreate
RaiseException
GetStdHandle
GlobalDeleteAtom
GetACP
EnterCriticalSection

user32

GetCursorPos
SetForegroundWindow
DrawTextA
ReleaseDC
ValidateRect
ClipCursor
DrawEdge
EndPaint
BeginPaint
GetFocus
GetWindow
GetParent
GetActiveWindow
ShowWindow
GetMenuItemInfoA
IsIconic
GetWindowTextA
GetClassNameA
CharToOemBuffA

version

VerQueryValueA
GetFileVersionInfoSizeA
VerFindFileA
GetFileVersionInfoA
VerInstallFileA

rasadhlp

WSAttemptAutodialName

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 704KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ