b151570f182f2a9544a9bcc3e1694ed6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b151570f182f2a9544a9bcc3e1694ed6_JaffaCakes118
Size

341KB
MD5

b151570f182f2a9544a9bcc3e1694ed6
SHA1

c48e410a98c93ad852251da740b4d6811d2503cd
SHA256

62cc52649667f27cb1c89462d71d7c7b62d84568596680f8067cd008aefb8902
SHA512

e3b565e12ff62b7807def37c860500f4e9373706afadf9d4715c85b61c240cdbcb31319f635bc75b40c3db6dfd1569a96d9c743f0079bc3d262765404a1c884e
SSDEEP

6144:Na3Ja0dbx3YkeJ5sedYsm/lmIzlxJF16zexUuLEJOkXGJAV:uJa0dbxDe5sedYvQITJF16KxnkXGSV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b151570f182f2a9544a9bcc3e1694ed6_JaffaCakes118

Files

b151570f182f2a9544a9bcc3e1694ed6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4c866091f634726a2bbf63b9e306b8fe

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
LocalFree
CreateFileMappingA
IsDebuggerPresent
CloseHandle
GetPrivateProfileIntA
IsBadReadPtr
FreeEnvironmentStringsA
LoadLibraryExA
GlobalLock
GetStdHandle
GetModuleHandleA
CreateFileA
HeapCreate
lstrlenW
CreateEventA
GetACP
GetConsoleCP
FindClose
GlobalUnlock

user32

CheckMenuItem
DispatchMessageA
GetIconInfo
GetListBoxInfo
RedrawWindow
EndDialog
GetDlgItem
SetFocus
GetDlgItemTextA
IsWindow
DialogBoxParamA
GetDC
GetMessageA
DrawIconEx

uxtheme

EnableTheming
DrawThemeIcon
CloseThemeData
GetThemeMetric
GetThemeColor

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ