73372c9fe9b9dcef430700b2f0e16311_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

73372c9fe9b9dcef430700b2f0e16311_JaffaCakes118
Size

109KB
MD5

73372c9fe9b9dcef430700b2f0e16311
SHA1

98c370cd7ff15fa1b3c744e260516ddd90dfd304
SHA256

a6d9c6e96e4fb01dad6b3aa4fa42d885e460ae3b885c94bbd649f7c90d702078
SHA512

3c1b01ddbbedca379a8c667bd2edef898c4e7c418ac1c8f8e5c56156ff74627b59464f1b03673839b3c35841fbde2c19125deb1b41810f6ec38020fb49d87801
SSDEEP

1536:vE2dIvvbYwGYaU68S/fnAdZ+EyK9RVa1KSmRKdhA2eKebIrlP2ubhwBn:v1+vBnaiS/fAdZ+RK9R4LYhsrlxhs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
73372c9fe9b9dcef430700b2f0e16311_JaffaCakes118

Files

73372c9fe9b9dcef430700b2f0e16311_JaffaCakes118
.exe windows:4 windows x86 arch:x86

667603bddbfd50d1e93abe82773c4a3a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

wsprintfA
FindWindowA
FindWindowExA
PostMessageA
SendMessageA

kernel32

CloseHandle
CreateFileA
ExitProcess
GetModuleFileNameA
GetShortPathNameA
GetSystemDirectoryA
GetTempPathA
Sleep
WriteFile
lstrcatA
lstrcpyA
lstrlenA

shell32

ShellExecuteA

advapi32

RegCreateKeyA
RegSetValueExA

Sections

.text
Size: 104KB - Virtual size: 105KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ