89da58f0330c3c8fd794e0a3d5954f35_JaffaCakes118 | Triage

Sharing

General

Target

89da58f0330c3c8fd794e0a3d5954f35_JaffaCakes118
Size

393KB
MD5

89da58f0330c3c8fd794e0a3d5954f35
SHA1

2d5c3aff36945ae991b735b3bf84ee2d65922962
SHA256

708f2453f08cc52fc98d547fd74df670a6aefa612a054045402bdf1a83b9096b
SHA512

a52061a417db2444f2bffe2fe5fe62d4ec8b1860c80661d3720c29b132af69107f8d5dddd84737f8bb300e5b1293f907fbb35820da0f8ddfb10bc15106c6189e
SSDEEP

12288:Am43KpJI6xj1dV9fJcEXW4OYIb5IiENCaPmA:Am4Cb1dV9fJhXWGHN/5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
89da58f0330c3c8fd794e0a3d5954f35_JaffaCakes118

Files

89da58f0330c3c8fd794e0a3d5954f35_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4dc18fb47603f01b9088514790a8c6f3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsGetValue
WaitForMultipleObjects
CreateFileA
Sleep
FindClose
GetConsoleAliasA
LocalLock
GetCalendarInfoA
GetModuleHandleA
LocalFree
GetConsoleCP
HeapCreate
CreateFileMappingA
LoadLibraryExA
CloseHandle
FreeEnvironmentStringsA
GetACP
GetLastError
GlobalUnlock
FindAtomA

user32

SetFocus
CallWindowProcA
GetDlgItem
IsWindow
GetMessageA
CreateDialogParamA
DrawTextA
GetDC
DispatchMessageA
CascadeWindows
GetIconInfo
DefWindowProcA
DrawEdge
MessageBoxA

msasn1

ASN1BERDecSkip
ASN1BERDecEoid
ASN1BERDecCheck
ASN1BEREncLength
ASN1BERDecNull

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ