a029f27b152ce53f5e6d0da6a9d95c48_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a029f27b152ce53f5e6d0da6a9d95c48_JaffaCakes118
Size

47KB
MD5

a029f27b152ce53f5e6d0da6a9d95c48
SHA1

b055477a29844b27405eb6284be22e95c988e8f6
SHA256

4c8942e80dbc2ec1785f2292caabb7f506b191fd6470b67121378680c1b799ec
SHA512

f52402804bc90be4b8b60db003148ce1c4c4ede9413047d97014244d024481e55dad11c27e6cde2da0d9359ad3d5824bbc67eca9e3a177c6aa42260e5914c87a
SSDEEP

768:IXRU/1TZE+5GJfRdCvdZNHnznndKWq2TuCPW+hqdQaLBmW5g:Ihaz+fC1ZNHznUijv4dQao8g

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a029f27b152ce53f5e6d0da6a9d95c48_JaffaCakes118

Files

a029f27b152ce53f5e6d0da6a9d95c48_JaffaCakes118
.exe windows:4 windows x86 arch:x86

285e7c8b9004e6462c915793543e70d4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

OleDestroyMenuDescriptor
CoResumeClassObjects
OleSave
CoGetMarshalSizeMax
CoLockObjectExternal
OleSetContainedObject
CoTaskMemAlloc
OleFlushClipboard
CoDosDateTimeToFileTime
OleIsRunning
OleDoAutoConvert
OleCreateLink
OleRegEnumFormatEtc
OleLoadFromStream
OleSetAutoConvert

user32

GetPropA
WindowFromPoint
GetDlgItemTextA
GetDC
OpenClipboard
GetWindowTextA
SetDlgItemTextA
GetWindowThreadProcessId
DrawEdge
DeleteMenu
MoveWindow
GetFocus
SetClipboardData
GetKeyState
ChildWindowFromPoint

kernel32

GetDateFormatA
GlobalMemoryStatus
EnterCriticalSection
GetCurrentDirectoryA
HeapSize
FreeEnvironmentStringsA
FlushFileBuffers
LocalAlloc
HeapAlloc
GetFileType
OutputDebugStringA
lstrlenA
TlsAlloc
HeapCreate
VirtualAlloc
SetStdHandle
GetVersion
GetModuleFileNameA
GetEnvironmentVariableA
GetPriorityClass
GetStdHandle
GlobalLock
SetHandleCount

msvcrt

strstr
strtoul
fgets
fclose
_access
_except_handler3
_wfullpath
_getcwd
_strcmpi
wcsrchr

Sections

.text
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 992B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ