971158efba34ee3aca1fd3599ebd1632_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

971158efba34ee3aca1fd3599ebd1632_JaffaCakes118
Size

55KB
MD5

971158efba34ee3aca1fd3599ebd1632
SHA1

142c32ce4a21c49cec40fe6ad1e3a6d2252c03f6
SHA256

7738b11518b4f4cdadcfb2aa925ec8af42ecedc7bc2701eb6a7ff0f18817a6de
SHA512

2ea5dc52fd72f61ee1f1b3c944857ed19da19aee3898ecdd6da63c72cab456b6030dfc6e6ee95ac67dd76e53225942227b454dad977726c52eccf0799d3ead05
SSDEEP

1536:WP9XNd3NXvXtkEJkcWQ3p14tBznXyaUNbH7:W3tkEBWQQpUNL7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
971158efba34ee3aca1fd3599ebd1632_JaffaCakes118

Files

971158efba34ee3aca1fd3599ebd1632_JaffaCakes118
.exe windows:4 windows x86 arch:x86

21121fbab2f40bab1a2f6a74143425f5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
IsDebuggerPresent
GetACP
GetStdHandle
GetFullPathNameA
CreateEventA
GlobalLock
LoadLibraryExA
IsBadReadPtr
LocalUnlock
HeapCreate
CreateFileMappingA
GetModuleHandleA
CreateFileA
GetConsoleCP
CloseHandle
FindClose
LocalFree
FreeEnvironmentStringsA
lstrlenW

user32

GetIconInfo
SetFocus
IsWindow
PostMessageA
ScrollWindow
GetDC
EndDialog
GetDlgItem
DispatchMessageA
CheckMenuItem
RedrawWindow
GetDlgItemTextA
GetMessageA
DrawIconEx

uxtheme

DrawThemeIcon
GetThemeColor
EnableTheming
CloseThemeData
GetThemeMetric

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ