971c0a565e86578500e654eb410b704c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

971c0a565e86578500e654eb410b704c_JaffaCakes118
Size

51KB
MD5

971c0a565e86578500e654eb410b704c
SHA1

5cfb68c52149c42448043204cc0ff1c23a2cee08
SHA256

2c7d58fc71b40a9fffee4d4c865568caa416059d6628775dc9708d835f0816b0
SHA512

4ee2855619a2bd641653b662704de1466aef18461ce0325f243e7bcfdaef34449a2e9b510511ccbd681a8c646dbb03ae5cae59237dc11715a596e308c99cbdd9
SSDEEP

768:MHHlCZHJzlkYn0woj6Fs6tahJ44v7bvBmIIbM79kkUnVYHQtmiuEn53kdPtnDNnC:MlIBkYn/AEsz4m7TUYpwQ1Q5wlDNnC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
971c0a565e86578500e654eb410b704c_JaffaCakes118

Files

971c0a565e86578500e654eb410b704c_JaffaCakes118
.exe windows:3 windows x86 arch:x86

667a14418670310dbcb7d1cb94b31a9b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteCriticalSection
EnterCriticalSection
FreeLibrary
GetCommandLineA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetTickCount
InterlockedCompareExchange
LeaveCriticalSection
MultiByteToWideChar
QueryPerformanceCounter
lstrlenA

user32

BeginPaint
DestroyWindow
EnableWindow
EndDialog
EndPaint
GetCapture
GetDesktopWindow
GetDlgItem
GetFocus
GetKeyboardType
GetSystemMetrics
IsChild
IsDlgButtonChecked
IsIconic
KillTimer
LoadCursorA
PostMessageA
SendDlgItemMessageA
SetWindowTextA
TranslateMessage

Sections

CODE
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BSS
Size: - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ