77e826045113fd94466fca718583cd86_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

77e826045113fd94466fca718583cd86_JaffaCakes118
Size

18KB
MD5

77e826045113fd94466fca718583cd86
SHA1

d6ed70a9ea4adae984297c0bd9c5aea34a15dafa
SHA256

1c5b57668bc4efa1eb91891de13b5e4bd915f842be3d574f9117ea6a2181a4e2
SHA512

c9c12eab8c5f192a60a842c6f0d76bf44c1dd2f72f5a3ecf8eec3d1e7b833aa3946cb58171bfac999ba5652a120bdb672785b6abcecb86b9b2a5b7fc54a0cbe4
SSDEEP

192:0k+VAciGZFPfVl7hFW7UEHJy96zAzjPhCps6AMFK07lVJTa0qtHWx:7IAIrfVLFW7U6J5AzjJD6LlVla0zx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
77e826045113fd94466fca718583cd86_JaffaCakes118

Files

77e826045113fd94466fca718583cd86_JaffaCakes118
.exe windows:4 windows x86 arch:x86

794216571b830157733e9e356bd95fb3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLogicalDrives
HeapQueryInformation
GetModuleHandleA
IsDebuggerPresent
GlobalMemoryStatus
GetTimeFormatA
GetProcessHeap
InterlockedExchange
WaitForSingleObject
GetStdHandle
HeapDestroy
HeapCreate
LoadLibraryExA
GetProcessVersion
VirtualProtect
CreateIoCompletionPort
GetCurrentThread
GetTapeStatus
GetCurrentProcessId
GetEnvironmentStringsA
GetACP

user32

ShowWindow
GetWindowTextLengthA
GetDlgItem
BeginPaint
FrameRect
wsprintfA
DrawTextA
EndPaint
ReleaseDC
FillRect
GetWindow
GetCursorPos
GetClassNameA
SetActiveWindow
SetForegroundWindow
GetFocus
DragDetect
GetParent
GetTitleBarInfo

advapi32

RegFlushKey
RegCreateKeyA
RegCloseKey
RegSetValueExA
RegEnumKeyA

setupapi

SetupCloseLog

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ