bcb6a1c085a30f64474fa95b2502fb81_JaffaCakes118 | Triage

Sharing

General

Target

bcb6a1c085a30f64474fa95b2502fb81_JaffaCakes118
Size

163KB
MD5

bcb6a1c085a30f64474fa95b2502fb81
SHA1

3dc296ad49e1bef0a0350c48f16e197e7eeaf3ef
SHA256

498e6ae867f886103af454c2f87ea4f8be1cf86dce7ed933124a5cc8c635289b
SHA512

f3100a977961a9543d2cfac4d9af1a7e15f65e047364634dfa2f4d1d3ec8b6e2dada2661262f32e7f76a0a2085078043c581ceefe14506519f3b84f7b1043246
SSDEEP

3072:bXqG1sxf6Hn/54eFg1e0mSutS39NzKTVKvTzwvEAzgOeM6VYQEvn20:bXqcnWGSutS39hKRK+EA8rM+BC20

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bcb6a1c085a30f64474fa95b2502fb81_JaffaCakes118

Files

bcb6a1c085a30f64474fa95b2502fb81_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5ba6be636448b09f3fa506da007e2610

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadCursorW
CreateWindowExW
GetDC
GetUpdateRgn
RegisterClassExW
GetWindowInfo
MessageBoxW
EndDialog

kernel32

FindFirstVolumeA
GetStartupInfoA
GetPriorityClass
TlsFree
EnumResourceTypesA
InitializeCriticalSection
TlsAlloc
ProcessIdToSessionId
TlsGetValue
GetFileType

oleacc

LresultFromObject

Sections

.text
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 616B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.apexi
Size: 1024B - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ