88d1091b3e614d707faf947d25c7fb58_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

88d1091b3e614d707faf947d25c7fb58_JaffaCakes118
Size

38KB
MD5

88d1091b3e614d707faf947d25c7fb58
SHA1

e3a03cecf6512f517a49af513bc57bff0c9224b0
SHA256

014112c978f25f2df919a7f06ce091d70b013a2d9658ebf33c941d83eb925b9b
SHA512

39aaa6f266896548f72bbaa809ad81635e03b9e4517bed66249088bddd4e6f6186fc7e1dab0138956fad2dbd6f6b7b96fc07e4d1fabe8a5a723aa2d6fb3b110c
SSDEEP

768:I2ka/EZDBxGbbDgupb22EqY//4412IKb5j4GIImQbs1WhVkU:XEDBxGbQZhqY3lKh3IYoeV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
88d1091b3e614d707faf947d25c7fb58_JaffaCakes118

Files

88d1091b3e614d707faf947d25c7fb58_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d4955dd3bb2546d87006fc746a8e6bb6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateEventW
ExitProcess
GetDevicePowerState
GetSystemTimeAsFileTime
IsBadStringPtrW
LocalFree
PulseEvent
ScrollConsoleScreenBufferW
SetConsoleActiveScreenBuffer
SetErrorMode
VirtualAlloc

advapi32

AddAccessDeniedAce
EnumServicesStatusA
GetAce
GetNamedSecurityInfoExW
GetSecurityInfoExA
IsValidAcl
LookupPrivilegeValueA
RegisterServiceCtrlHandlerA
SetSecurityDescriptorGroup
SetSecurityInfoExW

user32

ActivateKeyboardLayout
CreateIconFromResource
DdeNameService
EnumWindows
FillRect
GetInputState
GetMessageW
GetQueueStatus
GetSubMenu
GetUserObjectInformationA
GetWindowLongA
RegisterTasklist
WINNLSGetEnableStatus

shell32

CommandLineToArgvW
DllCanUnloadNow
DllInstall
FindExecutableA
InternalExtractIconListA
RegenerateUserEnvironment
SHGetPathFromIDListW
SHGetSettings
SHHelpShortcuts_RunDLLA
SHQueryRecycleBinA
SheChangeDirW
SheGetDirA
SheRemoveQuotesW
SheSetCurDrive
Shell_NotifyIconW

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 35KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE