a3d5bcf2f7dea24745e89fa68e2ebc45_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a3d5bcf2f7dea24745e89fa68e2ebc45_JaffaCakes118
Size

815KB
MD5

a3d5bcf2f7dea24745e89fa68e2ebc45
SHA1

bb317586921c574cb173daf19cf75e791c614acf
SHA256

7fa71f208c201855f2520a84238b4bc0657894165df1ad7c0527c1baad21c88c
SHA512

e2621ba3379f37670a002d54a6d52d51f642e990a855bb7280f9aa01f138ce58451f083c72813c12670375d02077913f7519b6030dec3d001fbaa82ef16b002f
SSDEEP

24576:7tsDbLJuZYmeOeNacSEwTdZfjAQvQ61B9CO:yXLJuamef4njAQFXr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a3d5bcf2f7dea24745e89fa68e2ebc45_JaffaCakes118

Files

a3d5bcf2f7dea24745e89fa68e2ebc45_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3268621ba1d267fc90cd04876fd73704

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
LocalUnlock
CreateFileMappingA
GetModuleHandleA
lstrlenW
CreateFileA
GlobalLock
IsDebuggerPresent
FindClose
GetLastError
LocalFree
IsBadReadPtr
LoadLibraryExA
GetConsoleCP
FreeEnvironmentStringsA
HeapCreate
GetStdHandle
GetACP
GetFullPathNameA
CreateEventA

user32

GetMessageA
DispatchMessageA
GetDC
EmptyClipboard
DefWindowProcA
IsWindow
ScrollWindow
PostMessageA
GetDlgItem
CreateDialogParamA
EndDialog
SetFocus
GetIconInfo
DrawIconEx

uxtheme

DrawThemeIcon
CloseThemeData
GetThemeMetric
EnableTheming
GetThemeColor

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ