a9fec233e99ef06fc5f9a800bb77021a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a9fec233e99ef06fc5f9a800bb77021a_JaffaCakes118
Size

289KB
MD5

a9fec233e99ef06fc5f9a800bb77021a
SHA1

123455a4ccbd84f1900cd5037a9135288fa38adb
SHA256

1dd4f808213693bdd3284e734429c43655bf8763d3fec6542636bfd4b300eb45
SHA512

27e0640cd7ddc7d2a4a632ea87082b205521af2eb97d1447bff84e65f4caba66f203b867fc812cce8048348adaf3500c098e1acebab08bf898a5bf3ca788b68c
SSDEEP

6144:7y4XDvUt/u7fVhXxLgc+g1b5k8LYrWiduX7a83/8kUpJf8lkPB/:m4Xzk/uhj+g1mYY2X7a8P8kUpJf8aZ/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a9fec233e99ef06fc5f9a800bb77021a_JaffaCakes118

Files

a9fec233e99ef06fc5f9a800bb77021a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5579d695462a70161f8622753223fa61

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateEventA
CreateFileA
CreateThread
FreeLibrary
GetCurrentThread
GetLocalTime
GetLocaleInfoA
GetModuleFileNameA
GetPrivateProfileStringA
LoadLibraryA
LoadLibraryW
LocalLock
OpenEventA
ReadFile
ReleaseMutex
SetEvent
Sleep
WideCharToMultiByte

user32

FindWindowW
InsertMenuItemW
LoadStringW
ReleaseDC
SendDlgItemMessageW
SetWindowPos
DrawFocusRect

Sections

.text
Size: 287KB - Virtual size: 286KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 706B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ