8ed9435cefbd52922fcf83535e2bc356_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8ed9435cefbd52922fcf83535e2bc356_JaffaCakes118
Size

22KB
MD5

8ed9435cefbd52922fcf83535e2bc356
SHA1

8e128545275b1f82943e3657dae9805f26b4878c
SHA256

225303a613c1fafb540bb3ffe8e7ab9539991bd4a174e5553642715606a2bd21
SHA512

c9e779a89414ac30eb2ba4d87a9d53d1cd7d0c936d1b5407053c2f7be70e54521cab08ca2c1e3990a6efb20d950625726540e8fd6662b5330f99100ea251103f
SSDEEP

384:PuaZKlWTiTwx2tDv/n6qV3l8DsTrn0UhDZ7DR:WpLwOxz8yrnP7DR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8ed9435cefbd52922fcf83535e2bc356_JaffaCakes118

Files

8ed9435cefbd52922fcf83535e2bc356_JaffaCakes118
.exe windows:62905 windows x86 arch:x86

447c6860a2b842a63021fc5d65dd287e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
VirtualAlloc
SetEvent
SetLastError
EnterCriticalSection
GetModuleHandleW
LoadLibraryA
ExitProcess

user32

GetSystemMetrics
IsWindow
SetCursor
GetClientRect
GetSystemMenu
GetDlgItem
LoadStringA
GetDlgCtrlID
LoadStringA

shell32

SHGetPathFromIDListW
DragQueryFileW
SHGetFileInfoW
DragQueryFileW
DragQueryFileW
DragQueryFileW
ExtractIconExW

advapi32

RegQueryValueExA
RegEnumValueW
RegOpenKeyW
RegQueryInfoKeyW
RegOpenKeyExA
RegSetValueExA

gdi32

GetObjectW
ExtTextOutW
PatBlt
CreateFontIndirectW
ExtTextOutW

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ