89855b51dd2f63aabe8b0833e0286874_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

89855b51dd2f63aabe8b0833e0286874_JaffaCakes118
Size

175KB
MD5

89855b51dd2f63aabe8b0833e0286874
SHA1

26ac5e5052bb9ad1aad0e94b374bb48cb6e44be1
SHA256

6444a659ec05a98d3d43d2f51c1cb207c91ae3ee3b608ce30f2604e8c18bec02
SHA512

99dcf3a0f4eb8acb9aeb8b4a84e23b828820d1e7f9660e485801118e196ae25c8ff288a28de081522b7c73fa44737a51be7050aeca167b0139865eca9c2431a1
SSDEEP

3072:ef5KdnvpR7TuB5USO7iI+PJLtBX4FpV5Kn3R0p4YNiofgyNSMkP6LFCUH:5dnqBFvPPFX4w3dhhMkSxCUH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
89855b51dd2f63aabe8b0833e0286874_JaffaCakes118

Files

89855b51dd2f63aabe8b0833e0286874_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1521be0532664918305808eef274c181

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

rpcrt4

NdrComplexArrayFree
UuidCreate

shell32

Shell_NotifyIconA

winmm

timeEndPeriod

kernel32

FlushInstructionCache
FindFirstFileA
MapViewOfFile
GetModuleFileNameW
EnumResourceNamesW
SetEnvironmentVariableW
UnmapViewOfFile
DuplicateHandle
FindResourceExA
FindClose

user32

FindWindowA
CreatePopupMenu
RedrawWindow
TrackPopupMenuEx
ClipCursor
DestroyMenu
GetDesktopWindow

Sections

.text
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 768B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ