bc674ca91b7c88efdd28be4f663fb51a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bc674ca91b7c88efdd28be4f663fb51a_JaffaCakes118
Size

45KB
MD5

bc674ca91b7c88efdd28be4f663fb51a
SHA1

9b5ca5fe10c8969c3a7e2c48a05828b8ed9427ca
SHA256

8dfd9810ea94ece535dd14445a192cb1c798f7b778d7528d1e05d2bcfaf58b93
SHA512

98e59166cf09730501aba21579f6010b51db4769fa177fa2db299c29eaa5610784e3e132b35d34635465b2aa1a4356168460a96cbb426ed5109c65984e28c9fd
SSDEEP

768:ajnizWr6qaN2ecU96kaGjzcQkFF1EfixnY0OP/RMk4EXE1jO7ZPr9gSjgMGuYq9:OnizWrplecI6kaGnchEsOPZMk4aEw79z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bc674ca91b7c88efdd28be4f663fb51a_JaffaCakes118

Files

bc674ca91b7c88efdd28be4f663fb51a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

73547155490f620fc89c64fd4cb21d5a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetOEMCP
GlobalFree
GlobalUnlock
GlobalAddAtomA
HeapCreate
EnterCriticalSection
VirtualProtect
GetLastError
lstrcat
LoadLibraryExA
CloseHandle
RaiseException
FreeConsole
IsBadCodePtr
GetStdHandle
LocalFree
SetConsolePalette
LoadResource
WriteProfileStringA
DeleteAtom
GlobalAddAtomA

user32

GetWindowTextLengthA
GetWindowTextA
GetParent
GetFocus
GetWindow
DrawEdge
GetClassNameA
IsIconic
ReleaseDC
ShowWindow
ValidateRect
GetDC
EndPaint
GetActiveWindow
BeginPaint
GetForegroundWindow
GetClassInfoExA
CloseWindow
AlignRects

mprapi

MprAdminUserWrite
MprAdminUserOpen
MprAdminUserGetInfo
MprAdminUserClose
MprAdminUserRead

linkinfo

CreateLinkInfoA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ