a660ad18cfe9a81217cd1ef8a0aec3c8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a660ad18cfe9a81217cd1ef8a0aec3c8_JaffaCakes118
Size

347KB
MD5

a660ad18cfe9a81217cd1ef8a0aec3c8
SHA1

c998e83b8ed2365128006a3b951c0eca363cc42c
SHA256

7006525560873e0274386232b230cc60ce41e71b31fe30077bbb7fc4878d1d79
SHA512

0f592583d47ea8548b5742477d714cfce1a1cfa3664be15a36b17bbcc6a545bfd18e44d0a29142cc9b303e875a421250cd37368d5d3e88092b3d2a2635e1006d
SSDEEP

6144:9yawOYsU7Z8ewVEFgf90G3pMdlq+xtHPiAmmr+J5F5M0JCgK78G:AaXU7Z8jEF49LZQlq+PiTQ+J5M0JzQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a660ad18cfe9a81217cd1ef8a0aec3c8_JaffaCakes118

Files

a660ad18cfe9a81217cd1ef8a0aec3c8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

342a4384e09cc0a64d311904c9686d8c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReleaseMutex
GlobalFree
HeapCreate
GetStdHandle
DeleteAtom
FindResourceA
GetVersion
GetModuleHandleA
CreateFileA
GlobalUnlock
SetLastError
CreateMutexA
lstrlenW
SetEnvironmentVariableA
TlsGetValue
VirtualQuery
GetCurrentThreadId
LoadLibraryExW
CloseHandle
GetExitCodeProcess

user32

CreateMenu
DrawEdge
CallWindowProcA
GetDC
SetFocus
CheckRadioButton
IsWindow
GetIconInfo
GetDlgItem
CreateWindowExA
DispatchMessageA
FillRect
DrawMenuBar

ntshrui

GetLocalPathFromNetResourceA
IsPathSharedA
SetFolderPermissionsForSharing
IsPathSharedW
GetNetResourceFromLocalPathA

msasn1

ASN1BERDecEoid

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 312KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 271KB - Virtual size: 272KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ