b9c90a754ac1a4635d02788d47c9e041_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b9c90a754ac1a4635d02788d47c9e041_JaffaCakes118
Size

132KB
MD5

b9c90a754ac1a4635d02788d47c9e041
SHA1

e761a9083b94abbd75b721cce01575347c9c3117
SHA256

10a132b3b1523b596060e325da92ca89f09d9839e06844958ff370cf7fbf6611
SHA512

5f9081d1b8d0e1206b34426cb89d85dd6568a3e21591dca8f2ca30c84e0b5c7ce9895eaa86d14fa8ac838a152458403fde4f24c0172da7b6dc3a2ac7018040fc
SSDEEP

1536:iekl1cHLRvhroyt8RtEODF26n9DzDheUPyh7k3+0Yn3J7f:/kDcHFvhroytaH229Dz4UMkD4JT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b9c90a754ac1a4635d02788d47c9e041_JaffaCakes118

Files

b9c90a754ac1a4635d02788d47c9e041_JaffaCakes118
.exe windows:5 windows x86 arch:x86

1fe9faa563fbb252b914bd1327773ffc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
SetHandleCount
PulseEvent
lstrcpyA
SetEnvironmentVariableA
VirtualAlloc
GetModuleHandleA
WriteConsoleOutputA
GetVolumeNameForVolumeMountPointA
LoadResource
GetCommandLineA
GetCommMask
WritePrivateProfileSectionA
SetConsoleHardwareState
SetConsoleScreenBufferSize
HeapFree
GetStartupInfoA
GetConsoleTitleA

gdi32

PolyTextOutW

user32

GetPriorityClipboardFormat
UnregisterDeviceNotification
CallNextHookEx
DlgDirListComboBoxA
RegisterDeviceNotificationA
GetWindowTextA
DrawFocusRect
EnterReaderModeHelper
CallWindowProcA
GetParent
GetClipCursor
CliImmSetHotKey
CharToOemBuffW
LoadBitmapA

Exports

Exports

InitAhjdpfkgkr
Kshxstnbw
Peqvanlbp

Sections

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 48KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 82KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 828B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ