b22dfec8748ccb7867f8ca2c40e4cebd_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b22dfec8748ccb7867f8ca2c40e4cebd_JaffaCakes118
Size

51KB
MD5

b22dfec8748ccb7867f8ca2c40e4cebd
SHA1

d74f910b0aef27a0ed0b722b24682fdf73385a70
SHA256

225c0651ccfc5c8bc67f535bd7ac6cd7168f321d907721aa762e0dfa4049c414
SHA512

f3176922c4d3e139b618fa99f8da4dbce1f8e1d01303db536ab0a7ab6e5e1637003f5e4f668415f0866b782304403c569abdb0cba09dfe6b335690e47cf2666d
SSDEEP

1536:57dShWxzgwHcnW/dF0L3NG+qjWp6ji1LXQ:RdScxzgY4+I3NG+qjWQGp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b22dfec8748ccb7867f8ca2c40e4cebd_JaffaCakes118

Files

b22dfec8748ccb7867f8ca2c40e4cebd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5162ce47e0b474192f99e59afc4b73f5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateNamedPipeW
DeleteFileW
ExitProcess
GetTempPathA
RequestWakeupLatency
SetHandleInformation
lstrlen

advapi32

BuildSecurityDescriptorA
GetMultipleTrusteeW
LookupAccountNameW
MakeAbsoluteSD
RegQueryValueA

user32

AlignRects
EnumPropsExW
GetCapture
OemToCharW
RegisterClipboardFormatW
SetClipboardViewer

shell32

ExtractAssociatedIconA
FreeIconList
SheGetCurDrive
SheRemoveQuotesA
SheShortenPathW
ShellExecuteEx

gdi32

CloseMetaFile
CreateHatchBrush
CreateRectRgn
GetLogColorSpaceW
SetAbortProc
SetMetaRgn
SetViewportExtEx
StretchDIBits
TextOutW

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE