c8f761a81855215e90ff927aa917ff24_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c8f761a81855215e90ff927aa917ff24_JaffaCakes118
Size

358KB
MD5

c8f761a81855215e90ff927aa917ff24
SHA1

c6fd1bc7c7b9945a14eb8b3c1d6f7f9645e773ef
SHA256

b73e04fd0398cf5ecec5399bf1803c51715df8b291543f0838a9a16720b4ad92
SHA512

264d8dd0e72a5edae7b983e6c2c4e190927f9dfd988998b56d6a889d9aaf5c088a801942af7d8ca030269b50fa41efef4a48e91ca38550d7b44c8c80675dbd37
SSDEEP

6144:sK11GLnGK090QKtYo6e9yydWM/EMMmYLZlFSUNbji9Yv30F:sK1mGK090rq6y6OnFNpAuEF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c8f761a81855215e90ff927aa917ff24_JaffaCakes118

Files

c8f761a81855215e90ff927aa917ff24_JaffaCakes118
.exe windows:4 windows x86 arch:x86

aa55ec2d83c0ddd3b21d98d8ee625a5b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryExA
GetSystemTime
GetACP
WaitForSingleObject
LocalLock
PeekConsoleInputA
SetLastError
InterlockedExchange
VirtualProtect
GetConsoleCP
ResumeThread
GetModuleHandleA
LockResource
GetAtomNameA
GlobalSize
TlsGetValue
lstrlenA
GetCommandLineA
HeapCreate
WaitForSingleObject
GetUserDefaultLCID

user32

FrameRect
BeginPaint
CreateIcon
DrawTextA
FillRect
GetFocus
GetParent
SetForegroundWindow
GetTitleBarInfo
wsprintfA
GetClassNameA
EndPaint
AnyPopup
ReleaseDC
ShowWindow
GetWindow
GetDC
DragDetect
GetCursorPos

ntshrui

GetLocalPathFromNetResourceA
SetFolderPermissionsForSharing
GetNetResourceFromLocalPathA
DllGetClassObject
DllCanUnloadNow

wshtcpip

WSHIoctl

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 556KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ