74d94bd9ff23fc3cb6855977894ab603_JaffaCakes118 | Triage

Sharing

General

Target

74d94bd9ff23fc3cb6855977894ab603_JaffaCakes118
Size

392KB
MD5

74d94bd9ff23fc3cb6855977894ab603
SHA1

bc561bd2e5ae0234118f704dcf9e3d639469b000
SHA256

c4da07da076ec238306d47853ee78d38c5c766edf46b5c0a77bfe1064254906b
SHA512

ddd895d2cbe3a2c52576c5f3a675b20aae2e7a6a54f415a87902e4c69e20d3ac7cb0edd17ac4645d3b3c78d2a64618878cdebe9b0033ed61ec969faed455ce25
SSDEEP

6144:LJbnUkqkFwzgVq767LkLbv1P/AxrvNCBeq0fG5bfAYSR6VbysZk1dWyRr3deGq:LoCJibvNYJbxYYgbRke6D9q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
74d94bd9ff23fc3cb6855977894ab603_JaffaCakes118

Files

74d94bd9ff23fc3cb6855977894ab603_JaffaCakes118
.exe windows:4 windows x86 arch:x86

09da6570a844d21bee56134a060389f7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnmapViewOfFile
TlsGetValue
GetACP
SetVolumeMountPointA
GetLastError
FreeEnvironmentStringsA
HeapCreate
ExitProcess
FindResourceA
CreateFileA
FindClose
HeapDestroy
FreeConsole
LoadLibraryExA
Sleep
GlobalFree
SetLastError
LocalUnlock
GetModuleHandleA
CreateMutexA

user32

IsWindow
GetFocus
CopyRect
GetDC
DispatchMessageA
GetDlgItem
CheckRadioButton
DrawEdge
GetIconInfo
FillRect
DefWindowProcW
DrawMenuBar
CallWindowProcA

uxtheme

DrawThemeText
GetThemeSysInt
DrawThemeIcon
DrawThemeEdge
GetThemeRect

clbcatq

SetupOpen

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ