acfd40933dd98d9c4de07ad29d1426dd_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

acfd40933dd98d9c4de07ad29d1426dd_JaffaCakes118
Size

86KB
MD5

acfd40933dd98d9c4de07ad29d1426dd
SHA1

2ebd0210a0d7a5207279ba4deb0ba0d247176d18
SHA256

5c4f95656417cf8f8b97433566c4a560182fbb767d7ae95dbbc05aaed9e90618
SHA512

2d4b346b971634e387aa40ec96c2e2711ed1fabe6792637e4f8afa9f0c0f651cacdda156a5fdfaa2bd376b9e1e5213b3b1f6021193d4bb74d75fd5b0b91d1d15
SSDEEP

1536:jAYMVn2zRtwPIJG+UvGvwPZAvLlLH7B1b0:jAjVnekQQZADZV1b0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
acfd40933dd98d9c4de07ad29d1426dd_JaffaCakes118

Files

acfd40933dd98d9c4de07ad29d1426dd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

eea4806504b75294f344e00e63c1d0c8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringA
GetVersion
LocalAlloc
GetProcAddress
LoadLibraryA
LocalFree
GetFileType

user32

TranslateMessage
DispatchMessageA
CharNextA
CharPrevA
GetMessageA

advapi32

RegCloseKey

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ