8b8b00410f5c32846408ddad55d40a9f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8b8b00410f5c32846408ddad55d40a9f_JaffaCakes118
Size

338KB
MD5

8b8b00410f5c32846408ddad55d40a9f
SHA1

1de637a439756472c6aab27daf7f3911029a06b5
SHA256

673e0b3dccbe0226076f9757e6e049f981c3bcd918d23d767b5053f561d636fc
SHA512

e0d6ae40ec0ca3effa5fbed1ab5a751fb3e419c84aa6d3261a77863476d8a5cc78f9d405eada1e0f4dabf4311c34c0b3e0b8c067ba4ffcb80c3136697f69fb8f
SSDEEP

6144:XIjBCL1CEgfafOGMq9ICOmWBZ2PrXuHiiPRTVfpC6OEOUtX9Zbkb:Y1CUf5q9GcXNiPFVRV9xkb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8b8b00410f5c32846408ddad55d40a9f_JaffaCakes118

Files

8b8b00410f5c32846408ddad55d40a9f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

82da4dbda7dab62951f2e632ba164af7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalUnlock
GlobalLock
OpenMutexA
GetModuleHandleA
CloseHandle
lstrlenA
ResumeThread
LocalFree
CreateEventA
GetStdHandle
GetLastError
FreeConsole
GetACP
LoadLibraryExW
FindClose
IsBadReadPtr
FreeEnvironmentStringsA
OpenMutexA
GetSystemTime
VirtualProtectEx

user32

CreateWindowExA
LoadCursorA
GetMessageA
ClipCursor
DialogBoxParamA
EndDialog
GetMessageA
SetFocus
GetSubMenu
IsMenu
GetComboBoxInfo
GetDlgItemTextA
IsIconic
MessageBoxA

uxtheme

EnableTheming
CloseThemeData
DrawThemeText
DrawThemeBackground
GetThemeColor

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ