78e557151a02ef9891a34ef8d9f1247f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

78e557151a02ef9891a34ef8d9f1247f_JaffaCakes118
Size

340KB
MD5

78e557151a02ef9891a34ef8d9f1247f
SHA1

785f541e9968074072dead0d7d443983c2a1fdb6
SHA256

06da3b694be4d945b150059cc49d10242d7a526600c1874b76d663a236222ab2
SHA512

35baa58a0687eb142e77870d81114f11e196a8043d54d6f10ee66c5c1fe1013b832dfdf3df229957a29f4289d09cd40ac518e01d56c3c47db345556ab7164f1c
SSDEEP

6144:wtzdKF7Yta2UM5IxXF/tIKAL7iFE7sNBo+aa9R3HJxvkSuM4PydyQrL:E1tUM5aV/oLOVfhaa9ZpV6EL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
78e557151a02ef9891a34ef8d9f1247f_JaffaCakes118

Files

78e557151a02ef9891a34ef8d9f1247f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ab81c8dda1e180994cad8a64afd7bc33

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryExA
GlobalUnlock
lstrlenA
GetConsoleCP
CreateEventA
MapViewOfFile
GetModuleHandleA
GetDriveTypeA
GetStdHandle
FindClose
FreeEnvironmentStringsA
GlobalLock
CloseHandle
HeapCreate
CreateFileA
GetACP
LocalFree
GetLastError
IsBadReadPtr
DeleteTimerQueue

user32

GetDlgItemTextA
GetDlgItem
ClipCursor
CreateWindowExA
GetMessageA
SetFocus
RedrawWindow
IsMenu
GetParent
CheckMenuItem
GetSubMenu
EndDialog
DialogBoxParamA
DrawIconEx

apphelp

ApphelpCheckIME
SdbCloseDatabase
ApphelpShowDialog
SdbFindFirstTag
ApphelpCheckRunApp

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ