738a43902d2ef358f432d8b2994c7dbe_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

738a43902d2ef358f432d8b2994c7dbe_JaffaCakes118
Size

322KB
MD5

738a43902d2ef358f432d8b2994c7dbe
SHA1

4e875146797f2f99c2f9580b420238264c9dcb4b
SHA256

de948a47c57debd3336c3b905f43a34a1eab50bb9bd668f2a5414521bf7fe833
SHA512

72ef349c4a1b997fc20e119f9a4a65e764529dfec35b048a789bbec1568594d2301b1ebea8299ff424cad87fe1259bcf61c6601bd781ef78f3e80fef53bb7bc3
SSDEEP

6144:MydVhzctJoYKS6/TJ80uIe1NF/5dVI4vYXbuleeehcJY1CZ/Hko8ZjJjsXPpPkYs:XdctJM/TJXe1RLYrutehGZ/v6JAXhMYs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
738a43902d2ef358f432d8b2994c7dbe_JaffaCakes118

Files

738a43902d2ef358f432d8b2994c7dbe_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2bda55ace6dc2d01b9e53e1159298e04

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapCreate
GlobalFree
GlobalUnlock
LoadLibraryExA
GetLocaleInfoA
CloseHandle
GlobalDeleteAtom
GetDriveTypeA
EnterCriticalSection
GlobalAddAtomA
GetACP
GetLastError
RaiseException
VirtualProtect
SetErrorMode
FoldStringA
SetConsoleOutputCP
GetStdHandle
LockResource
Sleep
InterlockedExchange

user32

GetCursorPos
ValidateRect
GetMenuItemInfoA
ShowWindow
GetActiveWindow
ReleaseDC
DrawTextA
EndPaint
GetParent
DrawEdge
IsIconic
ClipCursor
CharToOemBuffA
GetWindowTextA
GetClassNameA
SetForegroundWindow
BeginPaint
GetWindow
GetFocus

version

VerInstallFileA
VerQueryValueA
VerFindFileA
GetFileVersionInfoA
GetFileVersionInfoSizeA

rasadhlp

WSAttemptAutodialName

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 704KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ