76f5a99f6ac2616586832d6a1a42d445_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

76f5a99f6ac2616586832d6a1a42d445_JaffaCakes118
Size

7KB
MD5

76f5a99f6ac2616586832d6a1a42d445
SHA1

609758f4f6a3c3e7e1b158fb8b92816abc117195
SHA256

9ac41ab54043ed2c7f18f5aa9581177e207886137f997a1c89fa7588925c779d
SHA512

687c70539630222afa68ec4b5bb145d6fc627de426e58818334677be7d341c9b0fc4e93526a870a60d5ab1d6ce9ef358a793d200071a1feb454c15d733ca7aa1
SSDEEP

96:6P7uEC9sEZkCDSq6DxJQMnNfGETFXDvitKL+wMZsqaCz2cE+Mz8h:6Lis+kC42MNOETxmtuHMZLjz2qM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
76f5a99f6ac2616586832d6a1a42d445_JaffaCakes118

Files

76f5a99f6ac2616586832d6a1a42d445_JaffaCakes118
.exe windows:4 windows x86 arch:x86

28f410223faaff7f94192f8df0976fbd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindClose
GetDiskFreeSpaceA
FindResourceExA
FindAtomA
SetEvent
CloseHandle
ReleaseMutex
FindVolumeClose
GetCalendarInfoA
ExitProcess
SearchPathA
GetLastError
lstrlenA
DeleteCriticalSection
VirtualProtect
GetTickCount
TlsGetValue
CreateThread
GetModuleHandleA
Sleep

user32

IsIconic
EnableWindow
DragDetect
GetKeyState
GetUpdateRect
CreateMenu
CopyImage
EndDialog
GetScrollBarInfo
DispatchMessageA
CloseWindow
GetMessageA
CreateWindowExA
DialogBoxParamA

msdmo

DMOEnum
DMOGetTypes
DMOUnregister
DMOGetName
DMORegister

advapi32

RegCloseKey

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ