a7618519d77b9d22a121180b5b3679f8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a7618519d77b9d22a121180b5b3679f8_JaffaCakes118
Size

393KB
MD5

a7618519d77b9d22a121180b5b3679f8
SHA1

836c740aba843f2d0e56c847ca3919d08bdcc023
SHA256

4ac918d3a15bf450b3555b1676dc76a9cdaccabe1b2c5205487fa3368d72d408
SHA512

873d906eeab99c97a51170830c4a658f988230a4413741b64aea9cd76659a002029b1146728486d91f8daa052ed13f941d521850393cb70828fa7f53f67c05e9
SSDEEP

12288:oi3KpJI6xj1dV9fJcEXW4OYIb5IiENCaak:oiCb1dV9fJhXWGHNqk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a7618519d77b9d22a121180b5b3679f8_JaffaCakes118

Files

a7618519d77b9d22a121180b5b3679f8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3c84ff2534b71fbf4f7a5a4e63f007cf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
Sleep
GetConsoleAliasA
CreateFileMappingA
GetACP
FindClose
LocalLock
TlsGetValue
LocalFree
WaitForMultipleObjects
FindAtomA
HeapCreate
GetCalendarInfoA
FreeEnvironmentStringsA
GetConsoleCP
CreateFileA
GetLastError
LoadLibraryExA
CloseHandle
GlobalUnlock

user32

IsWindow
DrawEdge
SetFocus
GetDC
DefWindowProcA
DrawTextA
CallWindowProcA
GetDlgItem
GetMessageA
GetIconInfo
DispatchMessageA
CreateDialogParamA
CascadeWindows
MessageBoxA

msasn1

ASN1BERDecCheck
ASN1BERDecSkip
ASN1BEREncLength
ASN1BERDecEoid
ASN1BERDecNull

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ