b571320846c45068ae3c9c12476efe97_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b571320846c45068ae3c9c12476efe97_JaffaCakes118
Size

79KB
MD5

b571320846c45068ae3c9c12476efe97
SHA1

17e584288c1f628b668e4307ed5085171e4c5baa
SHA256

1620ae49a3e30b51375b27216751677a377edcf9102b534d259133d17d8eae99
SHA512

e18251bd0f08637d5ef6ab323dba059b4156293d8a7d5f60e31e7daf7e9a2a94c2054df2b08b5a5f2ef61af7d570869b53d28e5f2462bd06d104a642721b7a10
SSDEEP

1536:AiqANcDoXlu8CJCWAn24wwNQBdcZUfQk42+KFyLZA2lBP5CBGBIOJYLyV:AIaIU8CJC524wwNQQZYQkyLZAGxCBGB5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b571320846c45068ae3c9c12476efe97_JaffaCakes118

Files

b571320846c45068ae3c9c12476efe97_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e8cf83791b0ae89fb7f2c448edbb7bb7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpyA
lstrlenW
lstrcmpA
GetCommandLineA
VirtualProtect
lstrcpynA
SetUnhandledExceptionFilter
GetTickCount
VirtualProtect
GetACP
LoadLibraryW
QueryPerformanceFrequency
LoadLibraryA
lstrcmpiA
lstrcatA
lstrcatW
GetModuleHandleA
lstrcmpW
lstrcpyW
WaitForSingleObject

user32

CreateWindowExA
GetActiveWindow
SetCapture
EnableWindow
CheckMenuItem
GetDlgItem
SetTimer
PostMessageW
GetWindowTextW
LoadIconA
GetMenu
LoadCursorW
RegisterClassExA
ChangeMenuW
GetSystemMenu
SendMessageW
GetParent
GetWindowRect
CharUpperA
CheckRadioButton
GetWindowLongW
LoadMenuW
ShowWindow
ReleaseDC
GetForegroundWindow
LoadMenuA
LoadCursorA
GetWindowTextLengthW
LoadIconW
GetCapture
DefWindowProcA
GetSystemMetrics
GetWindowLongA
IsWindowEnabled
GetMessageW
GetDC
LoadStringW
RegisterClassExW
LoadImageW

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ