833452365d93e4aa9e3a7b0f3a922a5f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

833452365d93e4aa9e3a7b0f3a922a5f_JaffaCakes118
Size

4.1MB
MD5

833452365d93e4aa9e3a7b0f3a922a5f
SHA1

108e56b3657a75a093e631c670be4d4e9a79bb33
SHA256

d8c389db36d8b6205d450527aa2a4372d11b2200b8accd967428df0b4a25f60f
SHA512

ed6a024037636ae6e4dd309def765d1d8602cf74a93933ed4e607b1e14ba19d89137c616aeed189bd23fd676fdbac33932a8ffbeb4f3f64fca091a2fd939b602
SSDEEP

98304:ZjrYm69ya6bO6MCnJ6l3dqoZe4vGpaZd1vsqexOQX:pcmJa4Ocn0l3dqoE4vGpaZd1EmQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
833452365d93e4aa9e3a7b0f3a922a5f_JaffaCakes118

Files

833452365d93e4aa9e3a7b0f3a922a5f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

7317353abe71a7581785eb8a735fc8dc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
SetFileAttributesW
IsBadWritePtr
CreateSemaphoreA
ReadConsoleInputA
GetEnvironmentVariableA
WriteConsoleOutputAttribute
GetExitCodeProcess
GetAtomNameA
PurgeComm
CreateFileMappingA
GetVersionExA
OpenWaitableTimerA
DeleteTimerQueueTimer
WriteConsoleOutputCharacterA
VirtualAllocEx

user32

LoadCursorFromFileA
GrayStringA
DlgDirSelectComboBoxExA
UnpackDDElParam
LoadCursorFromFileA
GetMenuStringA
RegisterTasklist
GetKeyboardState
RegisterClassExA
RegisterClassA
InternalGetWindowText
EmptyClipboard
GetMenuItemID

Sections

.text
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 3.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ