82b7c45b0d0d72ca1dff9b46933dddd3_JaffaCakes118 | Triage

Sharing

General

Target

82b7c45b0d0d72ca1dff9b46933dddd3_JaffaCakes118
Size

838KB
MD5

82b7c45b0d0d72ca1dff9b46933dddd3
SHA1

13e89db4038b49486f011be5cc8b4d8f8ea33da8
SHA256

19f6bf3a45be140db5449277bac3ab04c6b073f4b79b03e87c82baf5ffdbe32c
SHA512

62f917a85c27373568b43e521e1b9fdda92e3b72cad4d37543eec24a4e95a3f1f5926b0532b852d15b861d62ff6392f9da83907b5481bbb296ee5f235ef8e2b1
SSDEEP

12288:/mm7ZuSEfBWIKMZZ+V8pHiXJDeb0i0f3RUYyIKvPmXlRBhnvCB4kMyC2QT+:P76f7NmSpHyZeYi0fLyRvPmVvNCbLs6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
82b7c45b0d0d72ca1dff9b46933dddd3_JaffaCakes118

Files

82b7c45b0d0d72ca1dff9b46933dddd3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2c4d260feb3da7379bc249c9f5034c6b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
Sleep
HeapCreate
CreateFileA
GetCurrentDirectoryA
LoadLibraryExA
UnmapViewOfFile
lstrlenA
GetTickCount
SetEvent
GetSystemTime
SetLastError
GetComputerNameA
GetModuleHandleA
GetCommandLineW
LocalFree
PulseEvent
CreateProcessA
LocalUnlock
CreateThread

user32

CheckRadioButton
SetFocus
DispatchMessageA
CreateWindowExA
CallWindowProcA
GetKeyState
DrawEdge
FillRect
GetScrollBarInfo
GetDC
GetDlgItem
DrawMenuBar
IsWindow

clbcatq

SetSetupSave
CheckMemoryGates
ComPlusMigrate
DllGetClassObject
SetupOpen

inetcpl.cpl

OpenFontsDialog

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE