a3346c5c0219df0fc1ae8b3a75f6d678_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a3346c5c0219df0fc1ae8b3a75f6d678_JaffaCakes118
Size

815KB
MD5

a3346c5c0219df0fc1ae8b3a75f6d678
SHA1

881f5fbd1629bf90ebf89d11354e4331c3d94e16
SHA256

987f758d60d940f9fe3c9aef4bf904bb8bcb86812fe985a7ecb9ffda3a373fbc
SHA512

39c74a8b8b82b36994a8f61db03ab4cdde54b331b492e77eab7c8ec8e95f27f55869221215b46c04519135eec55069d1ab67a5543cbd117216483d6a4c297d35
SSDEEP

24576:FInpGaASzJKMrJGSKr9WEffTgHPI5YV39CnyGcPbu6Ljx:F6pGaZtLJGvnTgvI5YV39bGvijx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a3346c5c0219df0fc1ae8b3a75f6d678_JaffaCakes118

Files

a3346c5c0219df0fc1ae8b3a75f6d678_JaffaCakes118
.exe windows:4 windows x86 arch:x86

69ec5fa38e63d7cf668b843e68cc101f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsGetValue
FreeEnvironmentStringsA
CreateFileA
FindClose
WaitForMultipleObjects
LocalFree
LoadLibraryExA
FindAtomA
Sleep
CloseHandle
GetConsoleCP
GetLastError
GetConsoleAliasA
LocalLock
GlobalUnlock
HeapCreate
GetModuleHandleA
GetCalendarInfoA
GetACP
CreateFileMappingA

user32

CallWindowProcA
SetFocus
GetDC
GetDlgItem
DispatchMessageA
CascadeWindows
GetMessageA
CreateDialogParamA
IsWindow
GetIconInfo
DrawEdge
DefWindowProcA
DrawTextA
MessageBoxA

msasn1

ASN1BERDecEoid
ASN1BERDecNull
ASN1BEREncLength
ASN1BERDecCheck
ASN1BERDecSkip

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ