77a9438a38ac6c55ed3095a7044deecd_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

77a9438a38ac6c55ed3095a7044deecd_JaffaCakes118
Size

19KB
MD5

77a9438a38ac6c55ed3095a7044deecd
SHA1

8845575cba6c2432399a94d99c331477a16053cc
SHA256

b698e5a277f2c764b2979cc66d7b3598852cd14142d1b527d6e498e868336479
SHA512

caf1e7f80cb24c2713431ddae862f7917e91107b0c34a9718c7a5161c191f6f2ac35342a640c154eaa669bdcf9158737a866d1aeebff00ee9322fe44564bf9f6
SSDEEP

384:V+cGZVqjqG03kIKQoP+5xJmLJhRoRa1UhNIUajRWHOpPvd9IVWnoZ2RRplmZsNUK:45mWobhXgK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
77a9438a38ac6c55ed3095a7044deecd_JaffaCakes118

Files

77a9438a38ac6c55ed3095a7044deecd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

911289760faeee10880c743c476fa7b2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindAtomA
EnterCriticalSection
GetVolumePathNameA
GlobalFlags
EnumDateFormatsA
GetModuleHandleA
GetProfileStringA
CloseHandle
GetProfileIntA
CreateJobSet
GlobalFree
ExitProcess
VirtualAlloc
GetProcessHeap
GetStdHandle
GetTapeStatus
GetOEMCP
LocalHandle
GetUserDefaultLangID
CreateMailslotA
GlobalLock

user32

EndPaint
ValidateRect
ReleaseDC
GetFocus
RegisterClassA
GetParent
GetWindowTextLengthA
GetClassInfoExA
IsIconic
CloseWindow
GetDC
GetWindow
DrawEdge
ShowWindow
GetActiveWindow
GetClassNameA
GetForegroundWindow
BeginPaint
GetWindowTextA

gdi32

ExtCreatePen
GetColorSpace
CreateDIBitmap
CreateDCA
GetCharWidthA

sxs

SxsLookupClrGuid

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ