75c22ec6c549cf1dca120920f57f82ce_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

75c22ec6c549cf1dca120920f57f82ce_JaffaCakes118
Size

50KB
MD5

75c22ec6c549cf1dca120920f57f82ce
SHA1

acdd0e2f27c353795fa14b41fe9b105e41df6421
SHA256

25f524ee1651690c9a0b82bb7a9d10a3d5ad0f5a88b5cf33e96a08db0de021cf
SHA512

7266f174cffcc5304490eb8b353b2a942dc4c6ec409c21c1362716adc811410a429b3506a76924721fd2f10cc115a0e7b8eb26c03a4b2de850772d8d09d330dc
SSDEEP

768:a5IBLG3In8gOyVOJFRITPaRz0ZxMMcCqmmcLwiRMZRH+O48yT8RrTIOVYZNlol:av4FOyQJoTPaRzaxaCh72l+TQfam

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
75c22ec6c549cf1dca120920f57f82ce_JaffaCakes118

Files

75c22ec6c549cf1dca120920f57f82ce_JaffaCakes118
.exe windows:4 windows x86 arch:x86

254f34356f71d8fa9f1d58145cafda2f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileW
CreateTapePartition
DefineDosDeviceW
ExitProcess
GetLogicalDriveStringsW
GetLongPathNameA
GetProcessShutdownParameters
GetProfileSectionW
GetTapePosition
GetWindowsDirectoryA
QueueUserAPC
ReadConsoleInputW
SetHandleContext
SetPriorityClass
SetThreadPriorityBoost

advapi32

BuildSecurityDescriptorA
CryptVerifySignatureW
EnumServicesStatusA
GetExplicitEntriesFromAclA
GetMultipleTrusteeOperationA
LookupPrivilegeValueA
PrivilegedServiceAuditAlarmA
RegDeleteKeyW
SetEntriesInAclA
SetSecurityInfoExA
TrusteeAccessToObjectW

user32

ArrangeIconicWindows
CreateDialogParamW
DialogBoxParamA
EnumDesktopsA
GetAsyncKeyState
GetNextDlgGroupItem
GetWindowInfo
InsertMenuW
SetClassLongA
VkKeyScanW
WaitForInputIdle

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 49KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE