753b22c9059dfd40cb8a6120a91d0ff7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

753b22c9059dfd40cb8a6120a91d0ff7_JaffaCakes118
Size

176KB
MD5

753b22c9059dfd40cb8a6120a91d0ff7
SHA1

c64280d084f1b7a54a4f8bf465f99ac54f75db56
SHA256

3ddef19144f0e7568dc409efa1a4e936fdd914a9120bdf463324e4cccf2e3aa9
SHA512

13fb84a71b4c6f541ba6c2c0cd2e997559274c56539755ee1e97342fca28d0f348f8ee3c10f97575ba968f9383f9f31b4e14cf98bd6c433dbe75156cf1c4abef
SSDEEP

3072:EqCYL/4CArxrZbJ2BCx9E5eZI/LjJIt2EOObzHeWfS9obD3147m3BvUPw0cMddGR:EtYkCe9ZbJFxieZIjlo2ERHeX9obymxv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
753b22c9059dfd40cb8a6120a91d0ff7_JaffaCakes118

Files

753b22c9059dfd40cb8a6120a91d0ff7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

69dabe68f278e79404b6fef8132c12cd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

FlashWindow
GetCapture
UpdateWindow
IsWindowEnabled
IsWindow
EnableWindow
DestroyWindow
InvalidateRgn
ValidateRgn
ExcludeUpdateRgn
ReleaseCapture
ValidateRect
RealGetWindowClassA
SetCapture
GetUpdateRgn

kernel32

FileTimeToLocalFileTime
FindClose
LocalFileTimeToFileTime
LocalFree
CreateFiberEx
LocalAlloc
GetSystemDirectoryW
SetThreadAffinityMask
FindNextFileW
SetErrorMode
LCMapStringW
GetShortPathNameW
EnumResourceNamesW
GetOEMCP
FreeLibrary
SetEnvironmentVariableW
IsBadReadPtr
FindFirstFileW
FileTimeToSystemTime
CompareStringA
LoadResource
SetThreadPriority
GetStringTypeW
FindResourceW
SetCurrentDirectoryW
SystemTimeToFileTime
GetCurrentProcess
GetLocalTime
SearchPathW

mprapi

MprConfigServerConnect
MprConfigServerDisconnect
MprConfigGetFriendlyName

Sections

.text
Size: 115KB - Virtual size: 115KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imul
Size: 512B - Virtual size: 380KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ