82ab0f9a9010071b39222e90709df657_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

82ab0f9a9010071b39222e90709df657_JaffaCakes118
Size

950KB
MD5

82ab0f9a9010071b39222e90709df657
SHA1

3f65972f8abe1bc9ea301cc0c72f98a6628ffef8
SHA256

b32d5cd9903eba15f9cb723285af69deffd6e7241e0a68fbc92a17198b0fe727
SHA512

87c1078c19484a1d1a5c9687acc614744791ec061df8107bceaa4deb5882071fed1b96058af4ff7d9fe04d59d57b4787e249e947575f50dbbc1b31e174347a58
SSDEEP

24576:u4UCcND/b5bYG9hpFwza6EwZ+xNos5fI9TOlv:urHD/dYGXpFwzRZklfsO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
82ab0f9a9010071b39222e90709df657_JaffaCakes118

Files

82ab0f9a9010071b39222e90709df657_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b8aa5195ec4e38911c721250c7aac628

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Add
ImageList_LoadImageA
ImageList_LoadImageW
CreateStatusWindow
ImageList_Create
ImageList_DrawEx
CreateStatusWindowW
ImageList_GetIconSize
DrawStatusText

advapi32

RegQueryValueA
RegOpenKeyA
RegQueryValueExA
RegEnumValueA
RegCreateKeyExW
RegEnumKeyW
RegDeleteKeyW
RegEnumValueW
RegQueryValueExW
RegSetValueA

user32

GetCursor
LoadMenuA
CopyRect
GetFocus
CloseWindow
GetDC

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 895KB - Virtual size: 895KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 68B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 356B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 848B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 38KB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ