bdabfe276d0bd6a8cf386709563c0b4f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bdabfe276d0bd6a8cf386709563c0b4f_JaffaCakes118
Size

321KB
MD5

bdabfe276d0bd6a8cf386709563c0b4f
SHA1

02c7a9c5f6f185d7a93a8b94b5313d7f0849dfdd
SHA256

42d87d9ddc59e0f16be58cc949e1a1a15ca83f32e8fab22ce35097807595f6ce
SHA512

e29b6e74188e0a42229e668e42004532469e0696e7ed8cafa38e91d1408bf7c02e3f62dc2bdc7b0aaf28aa7c591cec615c451e1eb41a4105f99670e69115e887
SSDEEP

6144:icwuO3NYDsNAdnQWMAN6l5yjiqXRZtWpfvxs5kiha0Al3EsRy2LaQtw:ic7O3N50BMukyHgG51A5WQy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bdabfe276d0bd6a8cf386709563c0b4f_JaffaCakes118

Files

bdabfe276d0bd6a8cf386709563c0b4f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e4d9a1b4f1a116e2824e12c0b62e8118

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryExA
Sleep
VirtualProtect
CloseHandle
FoldStringA
GetLocaleInfoA
GetACP
EnterCriticalSection
GlobalDeleteAtom
GlobalFree
SetConsoleCP
GetDriveTypeA
RaiseException
InterlockedExchange
HeapCreate
SetErrorMode
GlobalAddAtomA
LockResource
GetStdHandle
GlobalUnlock
GetLastError

user32

SetForegroundWindow
GetActiveWindow
GetClassNameA
CharToOemA
GetParent
ValidateRect
EndPaint
GetCursorPos
GetWindowTextA
DrawTextA
IsIconic
ReleaseDC
GetMenuItemInfoA
ShowWindow
GetWindow
DrawEdge
GetFocus
BeginPaint
ClipCursor

version

GetFileVersionInfoA
VerQueryValueA
VerLanguageNameA
GetFileVersionInfoSizeA
VerFindFileA

rasadhlp

WSAttemptAutodialName

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 704KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ