afe6148b6d7d369f4b911ba0326dea26_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

afe6148b6d7d369f4b911ba0326dea26_JaffaCakes118
Size

106KB
MD5

afe6148b6d7d369f4b911ba0326dea26
SHA1

e81fcc6a57badda1e06c8046aafa7cea18f69e03
SHA256

aef7c2434b4ed892f4058f46e93ea25cf41c037115b5b44266935d8c313288ca
SHA512

b3b9bcab88ad80982b3778f47ebcca6ab4aa51128cbe4f64e4f19f27ae6c6876abd01dbc3dc6eb8dae93892ac0a180580c91b2da84f09c3a6fe3eaa959d9596b
SSDEEP

3072:a3Ee22doPInOK6lThGj+0g05T+SZ5mrgPp5BV9eRl:a3o2doPZGjVgUT+SvmUBV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
afe6148b6d7d369f4b911ba0326dea26_JaffaCakes118

Files

afe6148b6d7d369f4b911ba0326dea26_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a297f888f8d11216676058c94b127463

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

KillTimer
GetMenuItemCount
IsDlgButtonChecked
CharUpperA
IsCharUpperA
IsCharLowerA
GetMenu

kernel32

ResetEvent
GetModuleHandleW
lstrlenW
GetCurrentThreadId
VirtualAllocEx
LocalFree
ExitProcess
GetVersionExA
LoadLibraryExA
GetACP
LockResource
GetFileType
lstrcatA
SizeofResource
SetEvent
EnumCalendarInfoA
LoadLibraryA
GetTickCount
GetModuleHandleA
EnterCriticalSection
MoveFileA
RaiseException
IsBadReadPtr
lstrcpynA

gdi32

GetDCOrgEx
CreateFontIndirectA
CreatePalette
GetDIBColorTable

shell32

SHFileOperationA
Shell_NotifyIconW

Exports

Exports

_nftySoq
_dQtP6N3hqPkND
7euhAhHY

Sections

CODE
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tdata
Size: 1024B - Virtual size: 711B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ