b2c67633080fc10ff1bd49b104068926_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b2c67633080fc10ff1bd49b104068926_JaffaCakes118
Size

392KB
MD5

b2c67633080fc10ff1bd49b104068926
SHA1

77b1b461c50ffceb93c2350ddc77cbe97fdab250
SHA256

8a6eafff8eb2ab18e9ae91771f885b590c17c4329f68492a4d7b45757a78fd9d
SHA512

4296a1e27757ebe82ccf558cbc6d010d36afa44653032536af5bf0441e322f5247d7fdb463265447a156e281d09de99cf9eccf1eccb0be608e0cd8b5ffb456d7
SSDEEP

6144:z3x8K1wG0fljKQIZhzc7HVHtf5vuyh+ajZCsuAMXMzFHCD/yr07oAH4HPcdK:7xx/ApUvsfRh+ajZCBAMXoUK0VHJA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b2c67633080fc10ff1bd49b104068926_JaffaCakes118

Files

b2c67633080fc10ff1bd49b104068926_JaffaCakes118
.exe windows:4 windows x86 arch:x86

27d4b914a8b561d252e397a965a64058

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsGetValue
GetModuleHandleA
LoadLibraryExW
GetACP
UnmapViewOfFile
ReleaseMutex
GetProcessHeap
HeapCreate
CreateFileA
CreateMutexA
HeapDestroy
FindResourceA
GlobalFree
GetEnvironmentVariableA
GetLastError
FindClose
SetLastError
SetConsoleCursorInfo
ExitThread
LocalUnlock

user32

CopyRect
GetIconInfo
DrawMenuBar
GetDlgItem
CallWindowProcA
GetFocus
IsWindow
CheckRadioButton
FillRect
DispatchMessageA
DefWindowProcW
DrawEdge
GetDC

uxtheme

DrawThemeEdge
DrawThemeText
GetThemeSysInt
DrawThemeIcon
GetThemeRect

clbcatq

SetupOpen

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ