bae829f8169401ea186ceff1637de9a1_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bae829f8169401ea186ceff1637de9a1_JaffaCakes118
Size

57KB
MD5

bae829f8169401ea186ceff1637de9a1
SHA1

55bc0a80352dd24e6bae617690c7c3afb498c09d
SHA256

cb5073bfbf2b341a53968233e561f3ad5530e0f66881a35b13d11e406caeaa7c
SHA512

7d3986c56f5267bb21f2ada4a88d67e13f1509448ecd0bb5c0477068a14e354b0574c67841b587febab559a03dfd25145e67e684e18a224b737798afe012c22b
SSDEEP

768:FkOPAlTTWMNd3NXvyk+8h5kTdFaUg0pso5k5UkJw+8ptsrjMU9cAruXI:F0Nd3NXvXtkDpIUEwqftyI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bae829f8169401ea186ceff1637de9a1_JaffaCakes118

Files

bae829f8169401ea186ceff1637de9a1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0a9cbe0f2949d5d0b78f4ed4d9b26f4f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetACP
GetLastError
LoadLibraryExA
CloseHandle
GetConsoleCP
GlobalLock
CreateFileMappingA
IsDebuggerPresent
GetPrivateProfileIntA
lstrlenW
LocalFree
IsBadReadPtr
FreeEnvironmentStringsA
FindClose
GetStdHandle
HeapCreate
CreateFileA
CreateEventA
GetModuleHandleA
LocalUnlock

user32

SetFocus
EndDialog
DialogBoxParamA
GetDlgItem
RedrawWindow
GetListBoxInfo
DispatchMessageA
GetMessageA
GetIconInfo
GetDlgItemTextA
IsWindow
CheckMenuItem
GetDC
DrawIconEx

uxtheme

GetThemeMetric
GetThemeColor
DrawThemeIcon
CloseThemeData
EnableTheming

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ