aef9147bf5c8b386169c2f5f55ba3c4d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aef9147bf5c8b386169c2f5f55ba3c4d_JaffaCakes118
Size

12KB
MD5

aef9147bf5c8b386169c2f5f55ba3c4d
SHA1

82a1b45d092c214a8cd0288e2c43662291afda95
SHA256

08ffb0c19ba46ed3275475e5f436aa96360477fe63036e98b5b85cd8e71e8884
SHA512

76e1523ae139e0b40d8d24369aef7f0cebd3128e60142a4d1b406e6264949c9224f75ce07a5bb877c1da4cc8b00f5102ff4ade2885a02410cedfbf52a2e1b7da
SSDEEP

96:ChipJWEow0cgpiuVBdyR6msTrDImbV6GUvlp5wzMQTdmmts0UXhP27:1Pw5cgMuPdyR6msPXwG45wwQHtoX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aef9147bf5c8b386169c2f5f55ba3c4d_JaffaCakes118

Files

aef9147bf5c8b386169c2f5f55ba3c4d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

732b04f66deaea8891527b6d7a4e628d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetKeyboardLayout
GetDoubleClickTime

shell32

ShellExecuteA

shlwapi

StrStrA
StrStrIA

kernel32

lstrcpyA
lstrcatA
LoadLibraryA
CloseHandle
ExitProcess
GetCommandLineA
GetModuleHandleA
GetProcAddress
GetVersion

advapi32

RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 652B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 552B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE