b586a581c17ab465cd8ae77f6059b150_JaffaCakes118 | Triage

Sharing

General

Target

b586a581c17ab465cd8ae77f6059b150_JaffaCakes118
Size

328KB
MD5

b586a581c17ab465cd8ae77f6059b150
SHA1

e221a48e86158cd9672d33b719f03ae4ddbad917
SHA256

96488e7d6666abc6e4f0c1935a767e33384cfaffb33547435024c43a3e215577
SHA512

abef4fb18b6e185bd7d6d6328c3548b7bb32a13b300ba5f79548b8ac8a5711c645cf2b3d4b385e10e35ee968680f0dff0b2c6a2c70a2cda76064ea21cf7d497e
SSDEEP

6144:pAK8PwjNi1eM3OcQ7C5ytkvG6hQOAtEiWSbj8Tg9tyE7ejCd4aS:69Y5ioSsC5+BIK4Tg9EEigRS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b586a581c17ab465cd8ae77f6059b150_JaffaCakes118

Files

b586a581c17ab465cd8ae77f6059b150_JaffaCakes118
.exe windows:4 windows x86 arch:x86

cb27bc700842989726d354165b1e20f5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineW
UnmapViewOfFile
Sleep
CreateThread
GetCurrentDirectoryA
GetComputerNameA
PulseEvent
SetEvent
GetModuleHandleA
LocalUnlock
LocalFree
LoadLibraryW
GetConsoleTitleA
GetTickCount
lstrlenA
CreateFileA
GetSystemTime
CloseHandle
SetLastError
HeapCreate

user32

CheckRadioButton
DrawMenuBar
DispatchMessageA
GetDC
DrawEdge
CreateWindowExA
GetScrollBarInfo
GetKeyState
CallWindowProcA
IsWindow
FillRect
SetFocus
GetDlgItem

clbcatq

UpdateFromAppChange
DowngradeAPL
SetupOpen
CheckMemoryGates
SetSetupOpen

desk.cpl

InstallScreenSaver

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 732KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ