b1dbdb611441c4e46edcd09433c34208_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b1dbdb611441c4e46edcd09433c34208_JaffaCakes118
Size

381KB
MD5

b1dbdb611441c4e46edcd09433c34208
SHA1

8e0628153be46c9df791ffd69a33fe1943eefc0b
SHA256

1108b440829fa40972accea9731df9ebc584ac16ac5b2f5a34607686edaff8e9
SHA512

5401c9efc5a9ee23410b7b5f07fb4a45994ad6b79cac4e56289cf2c07d1441da797d10c299fa6a5068d7aaecded3f07b08d4763f39e00e7443de7c93f3236a84
SSDEEP

6144:Te/pPQcD5bH7N2Aqcaa8AZSqgp+AHNle6x1LmIgwuKZ2+7PKtomL99TX37wF7ppG:ipbZ7NUcaLA81HNw6K4uKknL/Tnks

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b1dbdb611441c4e46edcd09433c34208_JaffaCakes118

Files

b1dbdb611441c4e46edcd09433c34208_JaffaCakes118
.exe windows:5 windows x86 arch:x86

8d67c6a9b909775c68a75b6294c8cfaf

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowLongW
GetWindowLongA
GetMessageTime
GetWindow
GetTopWindow
EndDialog
CheckMenuItem
GetSystemMetrics
GetDlgItem
GetParent
SetScrollInfo
DestroyWindow
LoadIconA
DestroyMenu
ClientToScreen

kernel32

HeapCreate
GetTickCount
GetDiskFreeSpaceA
MultiByteToWideChar
RaiseException
CloseHandle
ExitProcess
GetStringTypeW
ReadFile
LocalFree
ExpandEnvironmentStringsA
LoadLibraryA
SetEnvironmentVariableA
GetStartupInfoA
TlsAlloc
GetProcAddress
VirtualAlloc
InterlockedExchange
CreateThread
Sleep
DeleteCriticalSection
GetEnvironmentStrings
lstrcpynW

advapi32

RegOpenKeyExW
RegOpenKeyExA
RegCloseKey
RegCreateKeyExW

Sections

.text
Size: 152KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 131KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 94KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ