bebbe72f57154e8258ce3f28d783e08c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bebbe72f57154e8258ce3f28d783e08c_JaffaCakes118
Size

193KB
MD5

bebbe72f57154e8258ce3f28d783e08c
SHA1

6558bc187b005b5d97f8754346445c3a77a58fd1
SHA256

1ace4bb880a13465f4500f0dcab58735cca6fc911fd3b31f4b0213b41af925cf
SHA512

4187e26ca10c9a5af5ceed0e4a96aeefe315573bc4ac74acb8c94d5482cff79300150a711d959d3935bc1b5e9600f2661eb69969f401da146861726c6c9028ab
SSDEEP

6144:gv8oyvoExtBbWiHC5EkAisTIyf5GSd4f3jr:gvlkrWiHPRN5F63jr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bebbe72f57154e8258ce3f28d783e08c_JaffaCakes118

Files

bebbe72f57154e8258ce3f28d783e08c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e94392c731530c541877411872e2d4c0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SuspendThread
GetTickCount
lstrlenA
GetSystemDefaultLangID
GetVersion
GetAtomNameA
CompareFileTime
GetCommandLineA
InterlockedExchange
SetConsoleCP
GetStdHandle
GetModuleHandleA
VirtualProtect
HeapReAlloc
GetConsoleCP
GlobalUnlock
WaitForSingleObject
WaitForMultipleObjects
CloseHandle
HeapCreate
LoadLibraryExA

user32

CreateIcon
SetWindowPos
IsDialogMessage
GetKeyState
GetCursorInfo
FillRect
InvertRect
FindWindowA
DestroyMenu
DrawCaption
EnableScrollBar
GetKeyboardLayout
SetScrollInfo
InsertMenuA
DialogBoxParamA
DispatchMessageA
CreateMenu
GetDlgItem
SetPropA
DragObject
CopyImage

advapi32

RegCreateKeyExA
RegCloseKey
RegEnumKeyA
RegEnumValueA
RegQueryInfoKeyA

apphelp

ApphelpCheckExe

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 796KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ