b3496a85c7ef3808bcbcc20f72f8e6b3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b3496a85c7ef3808bcbcc20f72f8e6b3_JaffaCakes118
Size

93KB
MD5

b3496a85c7ef3808bcbcc20f72f8e6b3
SHA1

764c769455b0a07e7335e9a0b0e29ee742987a4a
SHA256

481b6d41ec379d5a4959cd49568db5e258f3d9875613a36ea32c7c2c30e4a595
SHA512

81d5c1b7e33f7071823f89e4645662d43c485121f0978ac48bef937446f0e08099bad8cdcf91fed0b33e30414782061bef85d5ae771eee5b5b41b2ad2d78406a
SSDEEP

1536:HYkmZeifsRsNmE+RZBjeTiDBMjHF3Yf6A89lZ6MZelUoC2nTnu2CwyHY:fifrNmbRZBqTSibF3N9z6MeULSnuTY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b3496a85c7ef3808bcbcc20f72f8e6b3_JaffaCakes118

Files

b3496a85c7ef3808bcbcc20f72f8e6b3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5d5bbe6fd02136617135d9b328e77035

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DestroyCaret
DeleteMenu
DefDlgProcA
CreateIconFromResourceEx
CopyImage
CloseWindow
CharToOemA
CharPrevA
CharLowerA
ChangeMenuA
ActivateKeyboardLayout

kernel32

GetStartupInfoA
lstrlenA
lstrcpynA
lstrcpyA
lstrcmpiA
lstrcmpA
lstrcatA
WriteFile
VirtualAlloc
UnmapViewOfFile
TlsSetValue
TlsGetValue
EnterCriticalSection
EnumResourceLanguagesA
EnumResourceTypesA
ExitProcess
FreeResource
GetLastError
GetLocalTime
GetSystemTimeAsFileTime
GetTimeFormatA
OpenFile
OpenFileMappingA
RtlUnwind
TlsFree

Sections

.text
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE