7802a6587e3b01a88caa18f25dd6ee56_JaffaCakes118 | Triage

Sharing

General

Target

7802a6587e3b01a88caa18f25dd6ee56_JaffaCakes118
Size

149KB
MD5

7802a6587e3b01a88caa18f25dd6ee56
SHA1

d57fe64a323919b3ec59607e7147daac15c05b18
SHA256

9c4518b382edab2e1a53f8dbcedf86e12d710e0a5eb27ed634ee8d2bb4140351
SHA512

30f20be38d58c294cf25ada45fa54c5d549a4e685eea7075e89dff0289cbf8dbb0011f33277178426c84126be2c84bd4b2ed695ccc0d5ad28470c8d7afe02c48
SSDEEP

3072:rrTYV8zdYCD/WKY8fLo6R8CHUjezKk2Dp93CHwQIpknIbAwWMT50T1nzybaGlos:fTxzdvyjS3P0ObQWQzHU7FBzjadyYvhB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7802a6587e3b01a88caa18f25dd6ee56_JaffaCakes118

Files

7802a6587e3b01a88caa18f25dd6ee56_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dc6b35680ec0fddf7bd1f21ea1b329e6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetWindowTextA
SetDlgItemTextA
SendMessageA
MessageBoxA
LoadIconA
LoadBitmapA
IsDlgButtonChecked
GetWindowTextLengthA
GetWindowTextA
GetDlgItem
EndDialog
DialogBoxParamA
CheckDlgButton
wsprintfA

kernel32

RtlMoveMemory
RtlZeroMemory
GetTickCount
lstrlenA
lstrcpyA
lstrcmpA
lstrcatA
WriteFile
VirtualFree
VirtualAlloc
UnmapViewOfFile
SetFilePointer
CloseHandle
CopyFileA
CreateFileA
CreateFileMappingA
CreateThread
DeleteFileA
ExitProcess
GetFileSize
GetModuleHandleA
MapViewOfFile
GlobalAlloc
GlobalFree
GlobalLock
GlobalUnlock
IsBadReadPtr
SetEndOfFile

comdlg32

GetOpenFileNameA

shell32

ShellExecuteA
DragQueryFileA

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 115KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE