a73e2af3fd9a9084002c728ca8bd780f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a73e2af3fd9a9084002c728ca8bd780f_JaffaCakes118
Size

97KB
MD5

a73e2af3fd9a9084002c728ca8bd780f
SHA1

ba1210b9b3551d28d3f0da334a6612f14f976481
SHA256

958115312a1eae4166fa7f5d57a167333ec4a2ab04719a7a996268640b6d317f
SHA512

172553c1b2c5c15b714a03c88ca78dc516208d0262cb04b9b48d453cf80094f1412c0df23f93fade7a97f69798bba9192174cf0f8d6bc2032eac266068fcadcc
SSDEEP

3072:W74vwQ5fd8DKy5OHOmVVy1l4FVmD6YBBZHB4tCdOnIv+ZQlwTuLznT:W4oQ5mDKezD6YHAhI0QS6LP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a73e2af3fd9a9084002c728ca8bd780f_JaffaCakes118

Files

a73e2af3fd9a9084002c728ca8bd780f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

063728fd462dfcd332320651450ed036

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindAtomA
GetProcessHeap
GlobalFlags
GetVolumePathNameA
GlobalLock
ExitProcess
GetOEMCP
CreateHardLinkA
ClearCommBreak
GetModuleHandleA
GetCommState
GetProfileStringA
CreateJobSet
GetStdHandle
EnterCriticalSection
CloseHandle
GetUserDefaultLangID
FormatMessageA
GlobalFree
GetTapeStatus
VirtualAlloc

user32

IsIconic
BeginPaint
GetForegroundWindow
GetWindowTextLengthA
CloseWindow
GetWindowTextA
RegisterClassA
GetActiveWindow
ValidateRect
GetClassNameA
GetDC
DrawEdge
GetFocus
EndPaint
ShowWindow
ReleaseDC
GetParent
GetWindow
GetClassInfoExA

gdi32

GetCharWidthA
ExtCreatePen
GetColorSpace
CreateDIBitmap
CreateDCA

sxs

SxsLookupClrGuid

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 728KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ