c88352262ee971148012a3ec762ba646_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c88352262ee971148012a3ec762ba646_JaffaCakes118
Size

244KB
MD5

c88352262ee971148012a3ec762ba646
SHA1

5114c3016b9be22e358dbbc2044010397d6ff93c
SHA256

c5080574fb8f145f6e9985cf118969cd8f5b761564dd985ec0ddb6abe7911e32
SHA512

e765c05a670db4fea9d091c459b6cdb5cccf8b4ef6ab6f759de0be2126ec9b9215b65a8ac897fae3190e0824c4f84af2fc86cdd0968e52db6fd2ef86dc74ed7b
SSDEEP

3072:7/jHeiSeEu3sCavJsCsk8JWgkde2SaJGNOzTdgVJWfQIiRJr8iu6SWetDlk+UYIL:rjHeil8CaVw2pJGQzTGLWfQIi0Ig5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c88352262ee971148012a3ec762ba646_JaffaCakes118

Files

c88352262ee971148012a3ec762ba646_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b024debb14afbd29b8ced94caa1a7b72

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CommConfigDialogA
GetBinaryTypeA
ReleaseMutex
CreateThread
GetDiskFreeSpaceA
MoveFileA
RequestWakeupLatency
LoadLibraryW
_hwrite
EndUpdateResourceW
FileTimeToDosDateTime

user32

SendDlgItemMessageW
EndDialog
CharUpperBuffW
AdjustWindowRectEx
EnumPropsExA
ToAscii
EndPaint
DlgDirSelectExW
DlgDirListW
GetSysColor
GetMenuStringW

gdi32

GetFontLanguageInfo
GetEnhMetaFileDescriptionW
GetClipRgn
GetKerningPairsW
AddFontResourceW
GetClipBox

Sections

.text
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 862B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 172KB - Virtual size: 169KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data0
Size: 60KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE