af01d3bdf7446a7b870ac38281235231_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af01d3bdf7446a7b870ac38281235231_JaffaCakes118
Size

186KB
MD5

af01d3bdf7446a7b870ac38281235231
SHA1

e94c63f7a1a33f05a3dc19a830f121d2d6c8bb66
SHA256

e22be9d6d49749881c9a51ac280bd6ae8f33b61dda6b17c1e62c956920b1b79d
SHA512

96b438d6c1b47af529da1ae3632a996ee85efcc4fcd4f22c271f922828d468f8f19d7856fb1ea04dc8df59d918ad13f7591dc16b843dd623a19609a786398b79
SSDEEP

3072:cXqjA7PrysZG9h9cBO3klmMU5+RHGKPS3MNlJ1mfjNgHC0q8Tkm4:jjiTys+h9V3QU5+1mrNp0lTF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
af01d3bdf7446a7b870ac38281235231_JaffaCakes118

Files

af01d3bdf7446a7b870ac38281235231_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bedbbed77da9206809e79e2dab13d9b1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetActiveWindow
SetFocus
GetWindowRect
SetDlgItemTextA
IntersectRect
MoveWindow
ReleaseDC
LoadAcceleratorsA
SetWindowLongA
CharNextA
GetKeyState
EndPaint
SetWindowRgn
EqualRect
GetDlgItem
BeginPaint
DestroyWindow
UnregisterClassA
OffsetRect
PtInRect
GetDC
DefWindowProcA
SetParent

clusapi

CloseCluster

kernel32

InterlockedIncrement
GetLongPathNameW
DeleteCriticalSection
InitializeCriticalSection
SetThreadContext
GetFileAttributesA
GetWindowsDirectoryA
GetModuleFileNameA
lstrcpynA
LoadLibraryA
EnumResourceNamesA
MultiByteToWideChar
InterlockedDecrement
ExitProcess
GetProcAddress
GetVersion
DisableThreadLibraryCalls
GetLocaleInfoA

Sections

.text
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ