9403a98a0cd4a2d37c9d9e6459108b69_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9403a98a0cd4a2d37c9d9e6459108b69_JaffaCakes118
Size

157KB
MD5

9403a98a0cd4a2d37c9d9e6459108b69
SHA1

c3ad1824f9b979f454c6b7e01608135631fcc28d
SHA256

8a95a4b3893ceafcbdfdb2613b2cd3d7e39a5308d5c056dd68d1a0da3e64cd38
SHA512

74da04abb48cc1816bcced4cc702df9204455d1456a961c84ec6fa7b9f78f4e86f45fb1f6ed868ce74f567cd493de3b01712e5029413538daeeb91e5a9be142b
SSDEEP

3072:zsfljYvBjMG/ihqy74ktiYrol+gVk5esQ:zMFYvBjPJ2DCupQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9403a98a0cd4a2d37c9d9e6459108b69_JaffaCakes118

Files

9403a98a0cd4a2d37c9d9e6459108b69_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ecc25fe6109e61e0495429da2ab4312b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RaiseException
GetProfileStringA
LocalSize
DeleteAtom
GlobalCompact
GlobalAddAtomA
VirtualAlloc
GlobalFree
EnterCriticalSection
CloseHandle
LoadResource
SetCommBreak
GetCommState
GetOEMCP
ExitThread
GetStdHandle
lstrcpyn
GlobalLock
GlobalFindAtomA
GetProcessHeap
LoadLibraryExA

user32

GetParent
ShowWindow
GetFocus
EndPaint
BeginPaint
GetWindow
AlignRects
IsIconic
GetDC
GetForegroundWindow
ValidateRect
GetClassInfoExA
GetWindowTextA
ReleaseDC
GetClassNameA
DrawEdge
GetActiveWindow
GetWindowTextLengthA
CloseWindow

wsock32

WSAGetLastError
WSAAsyncGetServByPort
WSACleanup
WSASetBlockingHook
WSAStartup

duser

AutoTrace

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ