abc4cccde095f745f80eff61bc52a691_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

abc4cccde095f745f80eff61bc52a691_JaffaCakes118
Size

396KB
MD5

abc4cccde095f745f80eff61bc52a691
SHA1

0f56e4d9c604b710bb7ac7984aba7d306f1c992c
SHA256

28fb52cf8b043e6d0b6ddb1196ef66b8e24e69f314cab801b3d8de45f12605fe
SHA512

bb58ba1cab1588dc5c8c8b5c3351abdd0a3dda0cae2348725265c40d93a997129dee971cf8cdec34c55aae21de2fc59aa59ad1a597c477aa451bf559ffdf4b4e
SSDEEP

6144:DOUqol32GmCwt3Ncm1pR2tVAdNqDMYD6k6F1+B8yzxmnvwlKfH:DOUbdA3NcGutVAdEDMFhFeEnvwS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
abc4cccde095f745f80eff61bc52a691_JaffaCakes118

Files

abc4cccde095f745f80eff61bc52a691_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c813935ebac8106a8b671d0fe7f65e34

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineW
LocalFree
GetTickCount
ResetEvent
lstrcpyA
GetSystemTime
GetModuleHandleA
FindClose
LoadLibraryW
GetComputerNameA
HeapCreate
CloseHandle
UnmapViewOfFile
CreateThread
GlobalUnlock
CreateFileW
PulseEvent
lstrlenA
GetCurrentDirectoryA
Sleep

user32

GetDlgItem
GetScrollBarInfo
CreateWindowExA
DispatchMessageA
FillRect
SetFocus
GetDC
DrawEdge
CallWindowProcA
IsWindow
CheckRadioButton
GetKeyState
DrawMenuBar

cryptui

WizardFree
CryptUIDlgSelectStoreA
CryptUIDlgCertMgr
CryptUIDlgSelectCA
LocalEnroll

timedate.cpl

CPlApplet

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 396KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 371KB - Virtual size: 372KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ