b00f5f2d40267d98ba1a83d84957282c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b00f5f2d40267d98ba1a83d84957282c_JaffaCakes118
Size

287KB
MD5

b00f5f2d40267d98ba1a83d84957282c
SHA1

77b91e129263f7235b7a8809d48935028a3d1321
SHA256

364fb23e274871d83400f04d7fb4076325d5c966f5c0f8c0088a96253c82f424
SHA512

be34edcbb67b4af53f9d85181cbdf490e13cf2b06509f722bdf8037d244e9e6ffeba55cc33040eb96e579e402004571376ffd106964b633685ae410669ba50d8
SSDEEP

6144:e/WZFIHbOxVj4AGlyXH47Slp7dT9CrIfcK/1ngY6pdRvBKe6z1O5:eeQbOxytc53xhCrHKFlw/se6z1O

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b00f5f2d40267d98ba1a83d84957282c_JaffaCakes118

Files

b00f5f2d40267d98ba1a83d84957282c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dcc23f485176e4568a962c5736426fe7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateEventA
CreateFileA
CreateIoCompletionPort
CreateMutexA
CreateThread
EnterCriticalSection
ExitThread
FindNextFileA
FreeLibrary
GetCurrentProcess
GetLocaleInfoA
GetSystemDefaultLCID
GetThreadPriority
GetTickCount
GetWindowsDirectoryA
GlobalAlloc
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
LocalReAlloc
LocalUnlock
SetEvent
SetFilePointer
Sleep
TerminateProcess
WaitForSingleObject
WriteConsoleA
lstrcmpiA
lstrcpynA
lstrlenA

user32

AppendMenuW
CheckDlgButton
DrawFocusRect
EqualRect
FindWindowA
FindWindowW
GetCursorPos
GetDlgItem
GetMenuItemID
LoadImageW
ReleaseDC
ScreenToClient
SetWindowLongW
UnionRect

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 272KB - Virtual size: 274KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ