c27c0b0d6dc7db18785cc1ff6df77658_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c27c0b0d6dc7db18785cc1ff6df77658_JaffaCakes118
Size

321KB
MD5

c27c0b0d6dc7db18785cc1ff6df77658
SHA1

ba2021aedd8991400ba2c2a1499e70207fd9ae2f
SHA256

cd9c16e216b0713e4495b8227d2464b6844c49cd3d050af8e52be343b79529be
SHA512

8659cb14a83a0be73dc5cd549a4702f8d4a0b6163d0dcc54440d49b86362c255f243127dd45d69487fcba985582a15e44b8ec04e901ace8137c122847b1a67b0
SSDEEP

6144:6dVhzctJoYKS6/TJ80uIe1NF/5dVI4vYXbuleeehcJY1CZ/Hko8ZjJjsXPpPkYfE:6dctJM/TJXe1RLYrutehGZ/v6JAXhMYs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c27c0b0d6dc7db18785cc1ff6df77658_JaffaCakes118

Files

c27c0b0d6dc7db18785cc1ff6df77658_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e8acf29647566a60ac7a697ab6bd8423

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
LoadLibraryExA
GetACP
SetConsoleOutputCP
GetDriveTypeA
GlobalUnlock
GlobalFree
SetErrorMode
Sleep
InterlockedExchange
GlobalDeleteAtom
GetStdHandle
HeapCreate
GetLocaleInfoA
GlobalAddAtomA
LockResource
FoldStringA
RaiseException
CloseHandle
GetLastError
EnterCriticalSection

user32

CharToOemBuffA
ValidateRect
BeginPaint
SetForegroundWindow
GetFocus
EndPaint
GetParent
DrawEdge
GetMenuItemInfoA
DrawTextA
GetClassNameA
GetCursorPos
ReleaseDC
ClipCursor
IsIconic
ShowWindow
GetWindow
GetWindowTextA
GetActiveWindow

version

VerFindFileA
GetFileVersionInfoSizeA
VerInstallFileA
GetFileVersionInfoA
VerQueryValueA

rasadhlp

WSAttemptAutodialName

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 704KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ