a77d2c6c5375684a5761be6a74d51c74_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a77d2c6c5375684a5761be6a74d51c74_JaffaCakes118
Size

26KB
MD5

a77d2c6c5375684a5761be6a74d51c74
SHA1

ab8f96630392406f476bf8b3f2566cf5f8fed93c
SHA256

f49f53c04a87b8fdca961dd70ee62afe7b4feaae7d83dd66859af73690e96f68
SHA512

6b5adc9ab80821560d149e9d767334efd7acd1016cd21e23e43c963b7ed861ff8f718514b96aa1d2dafd1b230f27dd359d3d29d6594311e5f9a6ffad6d9b3d52
SSDEEP

384:zffo/y0f5ltzR4R8Hgn3jquuxhVVPP+PBsrKUOXKYgwyVXHKXolE188ePoJQ:zffodXb4RpnToXM9UO6LwylX61GoJQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a77d2c6c5375684a5761be6a74d51c74_JaffaCakes118

Files

a77d2c6c5375684a5761be6a74d51c74_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7832bfcd5b50d01433c833fedb7c31fe

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAllocEx
RegisterWaitForSingleObjectEx
QueryDosDeviceA
GetGeoInfoW
HeapSize
PrivCopyFileExW
GetExitCodeThread
SetTapeParameters
PurgeComm
FileTimeToLocalFileTime
DosDateTimeToFileTime
ZombifyActCtx

user32

EnumChildWindows
EnumDisplayMonitors
GetWindowTextLengthW
GetDCEx
ResolveDesktopForWOW
SetDoubleClickTime
SetWindowRgn
ShowOwnedPopups
CascadeChildWindows
BroadcastSystemMessageW
GetDlgItemTextA
WaitForInputIdle
ShowStartGlass

Sections

.text
Size: 23KB - Virtual size: 28KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ