b1c0cd2d71ea8483a2d185a9409f03bf_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b1c0cd2d71ea8483a2d185a9409f03bf_JaffaCakes118
Size

321KB
MD5

b1c0cd2d71ea8483a2d185a9409f03bf
SHA1

216c1510616072b24460bbfb73f701a172c50048
SHA256

c1abd4389557e023b7baf5f69c07331418c81d2fc366bf3ffd4be07cd496b2be
SHA512

d34b6984cc518c1676e34fe2a621dd927a5876008d98e1e9caddb573a1b6a9ce939a662150e040a98669fcd45325d3620d119c3a8d20bf89dce525e63c1e0573
SSDEEP

6144:zdVhzctJoYKS6/TJ80uIe1NF/5dVI4vYXbuleeehcJY1CZ/Hko8ZjJjsXPpPkYfE:zdctJM/TJXe1RLYrutehGZ/v6JAXhMYs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b1c0cd2d71ea8483a2d185a9409f03bf_JaffaCakes118

Files

b1c0cd2d71ea8483a2d185a9409f03bf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0070e902574de009057dc4715eba8cf9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStdHandle
RaiseException
GetLocaleInfoA
GetLastError
GlobalAddAtomA
LoadLibraryExA
InterlockedExchange
FoldStringA
Sleep
VirtualProtect
SetErrorMode
HeapCreate
GlobalDeleteAtom
GetDriveTypeA
EnterCriticalSection
LockResource
CloseHandle
SetConsoleOutputCP
GlobalFree
GetACP
GlobalUnlock

user32

GetWindow
BeginPaint
IsIconic
EndPaint
GetActiveWindow
GetFocus
GetMenuItemInfoA
GetParent
DrawTextA
CharToOemBuffA
GetWindowTextA
SetForegroundWindow
DrawEdge
ValidateRect
ShowWindow
ReleaseDC
GetClassNameA
GetCursorPos
ClipCursor

version

VerInstallFileA
GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA
VerFindFileA

rasadhlp

WSAttemptAutodialName

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 704KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ