b882d58fe91afa4269c36d815eaef7cf_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b882d58fe91afa4269c36d815eaef7cf_JaffaCakes118
Size

165KB
MD5

b882d58fe91afa4269c36d815eaef7cf
SHA1

29db0d87bfcaa4fa07768620028b9aa2607fd3ac
SHA256

1a9319a1a01a5578437eb1943ad4d64499663599f25628c02e857bd9d77d87b0
SHA512

a23d34e147d75fb6e31c5f43c5ad8509076caf5d0d3e7c1eda91adeb75b99f6f0a03e370a5bc7ba9b7908d3216d379f13a100d5bf807fab5b8c607fc7730dc3f
SSDEEP

3072:fL04i4A9nohHTi/CWhWOihmtW+jcKa/xl0j7DlHFZrhmdpwPu4aTj4Op8SRQAOc:fPirnoxqCDOjWMcKaxaDlH3cdpGQX4a/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b882d58fe91afa4269c36d815eaef7cf_JaffaCakes118

Files

b882d58fe91afa4269c36d815eaef7cf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

aaebb9411c3a49f693ce1ecda366bc6c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpynA
GetModuleFileNameA
lstrcpyA
GetFileType
CreateFileA
GetStringTypeW
GetOEMCP
GetCurrentProcess
SetFilePointer
LCMapStringW
TerminateProcess
GetStringTypeA
GetCPInfo
GetStdHandle
LCMapStringA
lstrcpynW
MultiByteToWideChar
GetStartupInfoA
GetACP
GetVersion
WriteFile
GetCommandLineA

user32

LoadCursorA
GetCursor
InsertMenuA
CopyRect
DrawIconEx
CloseWindow
GetDlgItem
IsWindow
GetWindowTextA
GetMenu
DialogBoxParamA
GetFocus
IsMenu
GetDC
CopyImage
DrawIcon
LoadMenuA
GetWindowTextLengthA
EndDialog
DrawTextW
DialogBoxParamW
CopyIcon
CreateIcon

comctl32

InitCommonControls
ImageList_Create
ImageList_Destroy
DrawStatusText
CreateToolbar
CreateMappedBitmap
CreateStatusWindow
CreateUpDownControl
ImageList_AddIcon
MenuHelp

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 160KB - Virtual size: 18.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ