af184c90740fc29b45790d9157513cb5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af184c90740fc29b45790d9157513cb5_JaffaCakes118
Size

9KB
MD5

af184c90740fc29b45790d9157513cb5
SHA1

ddfc162bb9b8d57e57d73a5ac3009c759a657a3b
SHA256

3ee739f547957c78433d21a5caab0d13543c3db44601328046cd137e025bdb66
SHA512

635a85ec0f8f5439f3d23649952c1df456ebba643b9d524b13e1ab4de3d16e8e31e56538c8e39eccd90adae12bcb1dfe6ed9a7f01ab6804da0cd02982558eec7
SSDEEP

192:Ty4B6CxL5dEObjWB8OOyGYFM/98e9FdNYKrDUg+OZ2K14da3:Ty4B6YjJs8OXM/VzNnUQdKdG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
af184c90740fc29b45790d9157513cb5_JaffaCakes118

Files

af184c90740fc29b45790d9157513cb5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2f39a863c95698f0ecd23a40791c7753

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

InitializeSid
LookupAccountNameW
LsaEnumeratePrivileges
GetTrusteeTypeW
LsaOpenPolicy

user32

RegisterHotKey
RemoveMenu
SetCapture
OemToCharBuffW
SetCaretBlinkTime

Sections

.text
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE