a60dcb751da008ad5c8fc9860f587ad2_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a60dcb751da008ad5c8fc9860f587ad2_JaffaCakes118
Size

11KB
MD5

a60dcb751da008ad5c8fc9860f587ad2
SHA1

0cd38fcc925ea91add9a8be6b8ec966cf3b27f4f
SHA256

44053b6e0b0db726fa9292020fc625eb24f22840d41fe6034d1b4600fa3ccbb3
SHA512

60657abbd18e00873e015fcee160c8cca03d171af0ca4c0aa4f0595fed41be31cfb78114c7b207a0ebe85ffc47d50aaf9f9276460f0d745503dc38e1c1da494c
SSDEEP

192:d9mLTHZmX3juCQ3GH3DvyrqG4Khsn/a1xEpMGxjfm:duHW3juUDvyrX2n/aIpjj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a60dcb751da008ad5c8fc9860f587ad2_JaffaCakes118

Files

a60dcb751da008ad5c8fc9860f587ad2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e7c4bc5c43936c45d8f3dece911a8a11

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CompareStringA
CreateThread
FindNextFileA
FormatMessageA
GetComputerNameA
GetCurrentProcess
GetModuleFileNameA
GetTimeFormatA
GetVersionExA
GlobalAlloc
LoadLibraryA
LocalFree
MoveFileW
ReadFile
SetCurrentDirectoryA
SetErrorMode
Sleep
WaitForSingleObject
WriteConsoleA
lstrcatA
lstrlenA

user32

DeleteMenu
DestroyWindow
EnumChildWindows
GetDesktopWindow
GetMenuItemID
GetSubMenu
GetWindow
GetWindowThreadProcessId
InsertMenuItemW
InsertMenuW
IntersectRect
LoadMenuW
MessageBoxW
ModifyMenuW
PaintDesktop
RemovePropW
SendNotifyMessageW
SetMenuDefaultItem
SetWindowLongW
SetWindowPos
TrackPopupMenuEx
WaitMessage

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 714B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ