a7436558bf96ab077bb155d33f61715c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a7436558bf96ab077bb155d33f61715c_JaffaCakes118
Size

340KB
MD5

a7436558bf96ab077bb155d33f61715c
SHA1

3c181c065e9405d0843d1e4572c5be85de45f61b
SHA256

258171b799b717fa30cab75f95a87e2ba7962b84d84c449340f0aa8d01be10c2
SHA512

e935584ba9323f12bea2ba2b75174c9543c125b6a738498326a08ced1adddaa323884b19621d495de98a9b7c68dff9a39caeaa86a23451aec9f850fc4233fc1f
SSDEEP

6144:0tZdKF7Yta2UM5IxXF/tIKAL7iFE7sNBo+aa9R3HJxvkSuM4Pydk13CV:G1tUM5aV/oLOVfhaa9ZpV8tm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a7436558bf96ab077bb155d33f61715c_JaffaCakes118

Files

a7436558bf96ab077bb155d33f61715c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

66b51e7a03f9af9e9374cc7029f19db4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryExA
lstrlenA
FreeEnvironmentStringsA
CreateFileA
GlobalLock
IsBadReadPtr
CloseHandle
GetStdHandle
GetACP
GetConsoleCP
MapViewOfFile
HeapCreate
CreateEventA
GlobalUnlock
GetDriveTypeA
GetModuleHandleA
FindClose
LocalFree
DeleteTimerQueue
GetLastError

user32

GetDlgItem
CreateWindowExA
GetParent
DialogBoxParamA
GetSubMenu
IsMenu
GetDlgItemTextA
SetFocus
CheckMenuItem
ClipCursor
RedrawWindow
GetMessageA
EndDialog
DrawIconEx

apphelp

ApphelpCheckIME
SdbFindFirstTag
ApphelpCheckRunApp
SdbCloseDatabase
ApphelpShowDialog

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ