b5c6308d1a7bf056fa051804d3b89b50_JaffaCakes118 | Triage

Sharing

General

Target

b5c6308d1a7bf056fa051804d3b89b50_JaffaCakes118
Size

49KB
MD5

b5c6308d1a7bf056fa051804d3b89b50
SHA1

5a9f05335aedb6b4ef283e93d2fa6cc5cdf08e26
SHA256

9a0756619117b7970eb262db28fb8b287ada47f7b99aca49ac6edffab48911f2
SHA512

292fdf342ad9ea627c4e6fed1177df8f8ea679d956ec26ee511580e1904301a6d95ff05e13508f604eec05106d693b2ecc20507c1192a3f8736f939789d4a181
SSDEEP

1536:f3lU6YxDuVruSO3yJ/UBTH7Fd/9hZv8ffDuJnC:f1UHiruSO3yZQTz//Z8ffy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b5c6308d1a7bf056fa051804d3b89b50_JaffaCakes118

Files

b5c6308d1a7bf056fa051804d3b89b50_JaffaCakes118
.exe windows:3 windows x86 arch:x86

a91b6490ead5d367bf9e0434d43a0378

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteCriticalSection
EnterCriticalSection
FreeLibrary
GetCommandLineA
GetCurrentProcessId
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetSystemTimeAsFileTime
LoadLibraryA
LocalAlloc
QueryPerformanceCounter
SetLastError
Sleep
VirtualAlloc

user32

DestroyWindow
EnableWindow
GetCapture
GetClientRect
GetDC
GetDesktopWindow
GetDlgItem
GetFocus
GetKeyboardType
GetParent
GetSysColor
IsChild
IsDlgButtonChecked
IsIconic
KillTimer
LoadCursorA
LoadIconA
MessageBoxA
PeekMessageA
SendMessageA
SetForegroundWindow
SetTimer

Sections

CODE
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BSS
Size: - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 1002B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ