b3f5fa7f8c402af5f9e5e7e755fe1d59_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b3f5fa7f8c402af5f9e5e7e755fe1d59_JaffaCakes118
Size

50KB
MD5

b3f5fa7f8c402af5f9e5e7e755fe1d59
SHA1

0d9ad1722f27a71a1f3bbf2d57ed3b7e0d383f72
SHA256

27ceb9e5460571d7435296d7311690a398756bdb91f52b0d540ec0b9a22e2a8f
SHA512

9c777acbdd58a1bae0590b51d8bc7decb4a49e937b106c00167823d5c2356cb8f901e682ba0ed0dfcbe573873e35fdd4f61ffe756fde5ae5abca8df9f7308701
SSDEEP

768:Hu5obqMnJvChq+CVuKGcfXalmZbqYpmPlyiH9bKMm7vAu5fjq4t/pmnaLwp:OAqMnJCIbG0XalmZJG9GMCvJ/OaLU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b3f5fa7f8c402af5f9e5e7e755fe1d59_JaffaCakes118

Files

b3f5fa7f8c402af5f9e5e7e755fe1d59_JaffaCakes118
.exe windows:4 windows x86 arch:x86

beb5c1ac26d608e0a8ba3f7ffded873f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumResourceLanguagesW
EnumSystemLocalesW
ExitProcess
GetProfileStringA
GetProfileStringW
GlobalCompact
IsBadStringPtrA
LCMapStringA
OutputDebugStringA
SetCommState
TransmitCommChar
WaitForMultipleObjects

user32

AnyPopup
DestroyWindow
DragDetect
GetUserObjectSecurity
IMPSetIMEW
IsCharLowerW
IsRectEmpty
OemKeyScan
RemovePropW
SetMessageQueue

shell32

DllCanUnloadNow
DragAcceptFiles
ExtractIconA
FreeIconList
RegenerateUserEnvironment
SHBrowseForFolder
SHEmptyRecycleBinA
SHGetFileInfo
SHGetSpecialFolderPathA
SHQueryRecycleBinW
SheFullPathW

gdi32

CreateSolidBrush
EndPage
EnumFontFamiliesA
EnumFontFamiliesW
GetBkMode
GetColorAdjustment
GetICMProfileW
GetTextColor
GetTextExtentExPointW
GetTextMetricsA
GetWindowOrgEx
RectInRegion
ResizePalette
SetRectRgn
SetTextCharacterExtra

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 49KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE