88bea63f5c09e299d443f7311dcd4cd2_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

88bea63f5c09e299d443f7311dcd4cd2_JaffaCakes118
Size

272KB
MD5

88bea63f5c09e299d443f7311dcd4cd2
SHA1

169a78386193df8714d229355395452a7692f18d
SHA256

0c4c2954471822a3c3272551917ea5a276f02b3b127133d115c2bbdea46a3ce2
SHA512

4c1642e5f664c99dd01f5a23831fe747e86812b68a98fadfc3c0d8a9d6539b48dce084e8101e39c2145dc8004a87790eaffda277900e333e705a68c9d0a334bb
SSDEEP

6144:WEA1vg+H1mDoYyLZHEnFDOFzB9j7R3GIYrIVhqFfoIG:nIvWodFjFf71G7G2wl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
88bea63f5c09e299d443f7311dcd4cd2_JaffaCakes118

Files

88bea63f5c09e299d443f7311dcd4cd2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2d5ef4ec7d4c54f09450e70f1c1c42d6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateEventA
CreateThread
EnterCriticalSection
ExitThread
FormatMessageA
GetComputerNameA
GetDateFormatA
GetLastError
GetThreadLocale
GetTickCount
GetTimeFormatA
GlobalAlloc
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
LocalFree
MapViewOfFile
MoveFileW
MulDiv
ReleaseMutex
SetEvent
SetLastError
Sleep
TerminateThread
WaitForSingleObject
WriteConsoleA
lstrlenA

user32

CallWindowProcW
CharNextA
ClientToScreen
DestroyMenu
DispatchMessageW
EnumDisplaySettingsA
GetAsyncKeyState
GetMenuItemCount
GetScrollInfo
IsWindow
LoadStringW
ModifyMenuW
RegisterClassExW
RegisterClassW
ShowWindow
UnregisterHotKey

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 257KB - Virtual size: 259KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ