a70a715af135cea1cf983e470962fa77_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a70a715af135cea1cf983e470962fa77_JaffaCakes118
Size

183KB
MD5

a70a715af135cea1cf983e470962fa77
SHA1

a7995b81a61d151666c5fc274a00979000515e3f
SHA256

bc90a602bcaa05cc9f9992be58cd619c0b292eccaa6a5221d094af1c189fa23d
SHA512

8d10fea76c2b4be6d4b1785b117f262cda9acbcfffa52b67fa10c8570acaf1c3e2cc3a9f17a8379182f68fd49be578347018c2cea70e8b6089c3ea3872880a99
SSDEEP

3072:lNp+DRKzwUoK0hiYIzx7oIagNINNqC86/y6WVD3MeLF/NjXHpYBB1wBrW6d1odRP:lNsDkzw/K3xVuv8CWVD3LF/NjXqWrhnG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a70a715af135cea1cf983e470962fa77_JaffaCakes118

Files

a70a715af135cea1cf983e470962fa77_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5474cc9b52882ea56430e67bea6c906f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExpungeConsoleCommandHistoryA
InitializeCriticalSection
GenerateConsoleCtrlEvent
GetVolumeInformationW
EnumDateFormatsExW
GetACP
SetConsoleOS2OemFormat
SetFileApisToANSI
WideCharToMultiByte
SwitchToThread
CopyFileW
FindNextFileW
ReleaseMutex
ContinueDebugEvent
GetDateFormatA
WriteTapemark
ReadFileScatter
SetConsoleFont
RemoveDirectoryA
GetCommandLineA
ExitProcess
GetStartupInfoA

user32

ChangeClipboardChain
ImpersonateDdeClientWindow
DrawTextExA
GetMonitorInfoW
SendMessageW
DdeCreateStringHandleW
DragDetect
SwitchToThisWindow
IMPSetIMEW
CharUpperBuffW
FrameRect
GetMenuState
GetMessageA
SetUserObjectSecurity

Sections

.text
Size: 5KB - Virtual size: 809KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 173KB - Virtual size: 173KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 220B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE