873835d205b2eb2df21871414b131edc_JaffaCakes118 | Triage

Sharing

General

Target

873835d205b2eb2df21871414b131edc_JaffaCakes118
Size

56KB
MD5

873835d205b2eb2df21871414b131edc
SHA1

4e568bc91520264a45052c7e4e8fdf269b2235e2
SHA256

af490a32a6d520a6704962ca648d71dc52fed5a3e7add6405e39e84c222e1abc
SHA512

2f5595689a09e80f6640db1532071eaa318c283d72ad6b30247b94b3c2af1238696d8fa160e70f11589b382ca940693d84d0f10bb78bc328ed28ce80fbfb36c8
SSDEEP

1536:qrCDUc+v+ubpJE0LObL4oEBT3xBKLz6s1GhOJ9XTFaX:3+v+ub7E0LSUoEB7Pa5lvMX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
873835d205b2eb2df21871414b131edc_JaffaCakes118

Files

873835d205b2eb2df21871414b131edc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

176ae8e14983fca8c8fa086f89fab5cc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetConsoleLocalEUDC
FindAtomA
OutputDebugStringA
_lopen
GetStdHandle
LocalAlloc
AddConsoleAliasA
CreateDirectoryA
SetPriorityClass
lstrcatA
OpenMutexW
AddAtomA
GetTimeZoneInformation
ReadConsoleOutputCharacterW
RtlMoveMemory
GetTapePosition
SetConsoleOS2OemFormat
GetCommandLineA
ExitProcess
GetStartupInfoA

user32

GetMenuItemID
CopyAcceleratorTableA
CharNextA
IsMenu
SetScrollInfo
UnhookWindowsHookEx
GetNextDlgTabItem
SetCursorContents
CreateDialogParamW
GetKBCodePage
LoadIconW
SetCaretBlinkTime
CharLowerBuffA

Sections

.text
Size: 5KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 46KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 660B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE