aa5b04904e0ec043247cd64d48de1c34_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aa5b04904e0ec043247cd64d48de1c34_JaffaCakes118
Size

89KB
MD5

aa5b04904e0ec043247cd64d48de1c34
SHA1

969e9b4f7ffee76a0ef542da76484442c186fc84
SHA256

93b8f8984fe301689f993b7b2d422b88ec3c9d1bd20ae2f810e0d658f4d9a76b
SHA512

aa6977be34acffb71642cd60bb32353bd5bc193d406d67c69b1c369d63d3a24403088253ad1f87a7fc93628d673195a4fbec5e25e0b053b1264ea53f38ab797d
SSDEEP

768:pUKPUhq/LIQPZ4OvAnNljAiiJlFdIa/HHRZ0PUFx5AdzGlYtgBdDpngB+h9:jchaIQ/AnNxAiiJvffxZ9AdzG9dpgw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aa5b04904e0ec043247cd64d48de1c34_JaffaCakes118

Files

aa5b04904e0ec043247cd64d48de1c34_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1111b61350818e557e466f609384dd00

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeConsole
FindClose
GetExitCodeProcess
CloseHandle
TlsGetValue
DeleteCriticalSection
GetCommandLineA
GetVolumeInformationA
CreateMutexA
GetTickCount
GetLastError
GetComputerNameA
SearchPathA
ReleaseMutex
VirtualProtect
EnumResourceTypesA
Sleep
GetModuleHandleA
GetDriveTypeA
SetLastError

shell32

DragAcceptFiles
SHGetNewLinkInfo
SHAlloc
DragQueryPoint
SheChangeDirA
SHGetSettings
SHGetMalloc
SHGetDiskFreeSpaceA
ShellMessageBoxA
SHFree
DragFinish
DragQueryFileA
ShellAboutA
StrChrA

glmf32

glsComment
glsAppRef
glsBinary
glsChannel
glsBlock

user32

MessageBoxA

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE