b3aaaf9d55601270a44981a25e68b92a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b3aaaf9d55601270a44981a25e68b92a_JaffaCakes118
Size

93KB
MD5

b3aaaf9d55601270a44981a25e68b92a
SHA1

3f5be53cb237a9e9702a2032e87caeb7ff18c614
SHA256

490f23c247cad7fb3adc290aac5d066db94f4262478e236fce17109bbb5a42ae
SHA512

c876d7e6f99f694058c89f341f59f34ff9d0c3a3402799273e847711d9611a5a28818943baabedaeab075e280f26bf31ce56b7913d6636da6d5aa5470038912d
SSDEEP

1536:87KEjOwaU5nAoeT87fwknnwrNSJwPCsEfs0fdcbgWBSn0E4xcX7gvehDve11WHkT:87KEjIOAJ8chSJwPjCXdcbA0VxcXEGZy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b3aaaf9d55601270a44981a25e68b92a_JaffaCakes118

Files

b3aaaf9d55601270a44981a25e68b92a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fc5d3a991d833def03a40472344dd646

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetSystemInfo
GetTickCount
GetCurrentDirectoryA
GetProcAddress
GetModuleHandleA
GetCurrentThread

user32

BeginPaint
CharNextA
GetFocus
GetMessageA
DispatchMessageA
TranslateMessage

advapi32

RegCloseKey

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 87KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ