974ce992153847a3c5917659fd246721_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

974ce992153847a3c5917659fd246721_JaffaCakes118
Size

393KB
MD5

974ce992153847a3c5917659fd246721
SHA1

326c2a4d0ef7bed62a83d2ba3e066b3ff6d2d0fa
SHA256

defa596dcc5b1262e504a397b6156f2fadd6bd105ce386efa70f4cb36db8e584
SHA512

669bddc05a2c81cd4c55557f99c4e7610a74bb77b6a21e109b79680697070b53fd470d5ccef9b19f9d2b9c5648c3ad907e46e95801665d6588d0fddbbc25b946
SSDEEP

12288:8N3KpJI6xj1dV9fJcEXW4OYIb5IiENCaNOSzpR:8NCb1dV9fJhXWGHN9OSzD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
974ce992153847a3c5917659fd246721_JaffaCakes118

Files

974ce992153847a3c5917659fd246721_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5a88f48c1285c157e6f1af04b3144491

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindClose
GetConsoleAliasA
Sleep
CreateFileMappingA
GetCalendarInfoA
TlsGetValue
CreateFileA
GetACP
GetConsoleCP
GlobalUnlock
GetModuleHandleA
FindAtomA
LocalLock
HeapCreate
GetLastError
LoadLibraryExA
CloseHandle
LocalFree
FreeEnvironmentStringsA
WaitForMultipleObjects

user32

CascadeWindows
GetDC
DispatchMessageA
SetFocus
GetDlgItem
DefWindowProcA
DrawEdge
GetMessageA
CallWindowProcA
IsWindow
DrawTextA
GetIconInfo
CreateDialogParamA
MessageBoxA

msasn1

ASN1BERDecSkip
ASN1BERDecCheck
ASN1BERDecEoid
ASN1BEREncLength
ASN1BERDecNull

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ