74030727f583bf8c3d54160cf87b9ffa_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

74030727f583bf8c3d54160cf87b9ffa_JaffaCakes118
Size

159KB
MD5

74030727f583bf8c3d54160cf87b9ffa
SHA1

7ca43f034d97f15c6ccf1cc5e175a51dac8a234b
SHA256

f182035c826cb370a8a9d17734cc4c84b47dae0622b1f3b452ba682862cf1c41
SHA512

2eba97377fd4f79a731a9395bde34c2b9da94eae5f4b4dc6861610eb1d2f5632a7a8d6ee66a26c4cf3c98f3d0017f1307f0036ed80f03ad117c24532f6aeb017
SSDEEP

3072:dKG1h/19VXabRknYop+KYJA22chRtBrSlF5uOjVG4R6Pf:dLh/DQkYopmzrnSJuC0v

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
74030727f583bf8c3d54160cf87b9ffa_JaffaCakes118

Files

74030727f583bf8c3d54160cf87b9ffa_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8b3f4e3f3ce1f203ab1da1ad93ad9bda

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
LoadLibraryExA
HeapCreate
VirtualProtect
GetAtomNameA
GetModuleHandleA
GetCommandLineA
InterlockedExchange
LocalLock
GetConsoleCP
GetUserDefaultLCID
GetSystemTime
SetLastError
ResumeThread
PeekConsoleInputA
GetACP
TlsGetValue
lstrlenA
LockResource
WaitForSingleObject
GlobalSize

user32

GetFocus
DrawTextA
wsprintfA
GetClassNameA
GetWindow
GetDC
BeginPaint
GetTitleBarInfo
FrameRect
GetCursorPos
CreateIcon
DragDetect
FillRect
GetParent
SetForegroundWindow
ReleaseDC
EndPaint
AnyPopup
ShowWindow

ntshrui

DllGetClassObject
SetFolderPermissionsForSharing
GetLocalPathFromNetResourceA
DllCanUnloadNow
GetNetResourceFromLocalPathA

wshtcpip

WSHIoctl

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 620KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ