aaf45ced7f02c67bbab88e6bd46d5f92_JaffaCakes118 | Triage

Sharing

General

Target

aaf45ced7f02c67bbab88e6bd46d5f92_JaffaCakes118
Size

393KB
MD5

aaf45ced7f02c67bbab88e6bd46d5f92
SHA1

04228038f66a44d678409e21cc9c39789f6b4745
SHA256

0f1f188799ba937a8ae609e42325845d5fe23c0905f42d466c8b994ba6bb148d
SHA512

5d937eda0596f1c36376235cce727be54e577e69ec5dedf9414c6afaacb25913a20dbbaca30e507bd2d6f6e2218ae185769b1e8ec6ccbd49cb95cfab3ee2ec16
SSDEEP

12288:pYzh/yF1tpKV+n4o6/yf81C1/FVKrm0IBVPk:pYEzKavfX0eRk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aaf45ced7f02c67bbab88e6bd46d5f92_JaffaCakes118

Files

aaf45ced7f02c67bbab88e6bd46d5f92_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c246d8f90902b29be0456c99971d3031

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryExW
GlobalUnlock
FindResourceA
TlsGetValue
GlobalFree
CloseHandle
GetEnvironmentVariableA
ReleaseMutex
DeleteAtom
GetModuleHandleA
ExitThread
GetACP
HeapCreate
GetCommandLineA
SetLastError
CreateMutexA
FindClose
PulseEvent
CreateProcessA
CreateFileA

user32

GetDC
DrawEdge
SetFocus
GetIconInfo
DefWindowProcW
CallWindowProcA
DispatchMessageA
GetDlgItem
CheckRadioButton
DrawMenuBar
FillRect
IsWindow
CopyRect

msasn1

ASN1BERDecCheck
ASN1BERDecNull
ASN1BEREncBool
ASN1BEREncEoid
ASN1BERDecBool

clbcatq

SetupOpen

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ