a92da479d3ea7143938803aee8187905_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a92da479d3ea7143938803aee8187905_JaffaCakes118
Size

53KB
MD5

a92da479d3ea7143938803aee8187905
SHA1

6a3907cc900e45ffbf9fb28b60405f2cf00a3784
SHA256

bcaa96bfb40324593781ad20e6965b13e511df9c0da1d2fba6df1eb41c43e805
SHA512

57854641bbbe5afcf8c728199f3db209379f42f9f8b9fb24811944cdc94517e5475f4b0ecc33be8b4b09ac70a374a7382eca9155328fdafe57c6e8a5fd6387ef
SSDEEP

1536:q2rD48yVZD3YEUpR7c6yV6dP/WGLRzAvIXLn:uD3GhcweGLRzb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a92da479d3ea7143938803aee8187905_JaffaCakes118

Files

a92da479d3ea7143938803aee8187905_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8a9442093d6bf60661091a087c83e1f0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteCriticalSection
ExitProcess
GetEnvironmentVariableA
GetLongPathNameA
GetNumberFormatA
GetNumberFormatW
GetOverlappedResult
GetShortPathNameA
GetStdHandle
GetTempPathW
HeapCompact
LCMapStringA
ReadConsoleW
SetConsoleMode
lstrlenA

user32

CharNextA
CharToOemBuffW
CloseClipboard
DdeEnableCallback
DrawCaptionTempW
EnumDesktopWindows
IsIconic
ScreenToClient
SetDebugErrorLevel
SetUserObjectSecurity
TranslateAcceleratorA
UnregisterClassW
VkKeyScanW

shell32

Control_FillCache_RunDLLW
DragAcceptFiles
ExtractIconA
ExtractVersionResource16W
RealShellExecuteW
SHFreeNameMappings
SHGetMalloc
SHGetPathFromIDListA
SHGetSettings
SHHelpShortcuts_RunDLLW
Shell_NotifyIconA

gdi32

CombineTransform
CreateDCA
CreateEllipticRgnIndirect
CreateHalftonePalette
CreatePolygonRgn
ExtTextOutA
GetBrushOrgEx
GetCharABCWidthsFloatW
GetICMProfileA
GetObjectW
GetPixelFormat
GetTextExtentExPointA
RemoveFontResourceW
StretchBlt

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE