b42312130124e7cbea832305b267c350_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b42312130124e7cbea832305b267c350_JaffaCakes118
Size

8KB
MD5

b42312130124e7cbea832305b267c350
SHA1

e8ab3e82898eb580e8483d6548b5893801c9532a
SHA256

463218631a7bd8f81968728e180883ec77b54b0b3f8008206edb0312507cc7c7
SHA512

6a2b15d3c2e155dd1f6c75bb4e92e7c39c5863d42cf206dc508d28f5629de412fd9ce7dc54e5726a0e4ab338c8310bb3d9fc123aa5ad08c436a7549e402ed45e
SSDEEP

48:yeKIwmdBb5yxmgPM1oQGBsEAZ1rxsQR4tCUAaBVibZWrNMQC8Wuvt1gggCm3fcxH:HfwS2S2WaQu3HLFN8FmgggCmI/sI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b42312130124e7cbea832305b267c350_JaffaCakes118

Files

b42312130124e7cbea832305b267c350_JaffaCakes118
.exe windows:4 windows x86 arch:x86

684ca86c7045c8d04b2115fa2d972efc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

wsprintfA
SetTimer
SendMessageA
DialogBoxParamA
SetClassLongA
LoadIconA
MessageBoxA
SendDlgItemMessageA
EndDialog

kernel32

GlobalMemoryStatus
GetVersionExA
GetTickCount
ExitProcess
GetModuleHandleA
Sleep

wsock32

WSAStartup
inet_ntoa
gethostname
gethostbyname
WSACleanup

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey
GetUserNameA

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 742B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ