aed0997a6c5360b9fd263f90e53c3753_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aed0997a6c5360b9fd263f90e53c3753_JaffaCakes118
Size

50KB
MD5

aed0997a6c5360b9fd263f90e53c3753
SHA1

0bae2f4d0dd3945a35435bfb509cb8eda7cf893f
SHA256

70b341b78ffa823bb1bb2e7d3e9bcaf9b246518cef2a4da3cfba6fe989661c84
SHA512

41c8655ce591f67bfdc9c4d7b8ae8a50754ac5a3992a0e1c0ab2ba220a2ce8a661a8cf1f6c3fb59c8b5862cca7613a8950a9b86f3b060b6eaa8eff11d1454cd4
SSDEEP

768:qtCPIWNbqUYxP+6joF4sG/lqIgouGKF7E3cG4sIo7XoerzdqOtsYuAOaMOhc/za:uONyP+6jSr2JH0E3c6hcuOa5qG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aed0997a6c5360b9fd263f90e53c3753_JaffaCakes118

Files

aed0997a6c5360b9fd263f90e53c3753_JaffaCakes118
.exe windows:5 windows x86 arch:x86

610a8cbfd1c247bf94db710ca94b6844

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetErrorMode
GetVersionExA
GetStdHandle
SetLastError
GetCommandLineA
GetLastError
LCMapStringA
GetWindowsDirectoryA
GetSystemInfo
LocalAlloc
LocalFree
SetStdHandle
ExitProcess
FormatMessageA
ReadFile
CreateFileA
VirtualAlloc
GetModuleHandleA
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsDebuggerPresent

user32

IsWindowEnabled
PostMessageA
SetWindowTextA
PostQuitMessage
SetTimer
GetWindow
UnregisterClassA
IsWindowVisible
CreateWindowExA
SetFocus
ShowWindow
KillTimer
GetActiveWindow
DispatchMessageA
GetClientRect
SendMessageA
MessageBoxA
wsprintfA
EndDialog
GetWindowRect
GetDesktopWindow
PeekMessageA
IsWindow

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ