cb3dbf2f2be38bc291c5d5eeacd93546_JaffaCakes118 | Triage

Sharing

General

Target

cb3dbf2f2be38bc291c5d5eeacd93546_JaffaCakes118
Size

100KB
MD5

cb3dbf2f2be38bc291c5d5eeacd93546
SHA1

b561da4e7f90581ca591e8bbf7a9f4e793bfdfcd
SHA256

d9c587c4646c790f4dda013e7704209687fbaca050686b6e09af356af754fed0
SHA512

5097e3e149d875838be54b75f31b62d1c88768c65870a6b650b1ffa46eb0829a27e6b6a9331b45f0fbc40b473695604d991fa47580b08d3fa16f4922d71ed6d3
SSDEEP

3072:iUWyIDNGKciTfgVYhotylAarSVHPonls9Soh4s:iUWl1ciTeYwyeCkqFY4s

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cb3dbf2f2be38bc291c5d5eeacd93546_JaffaCakes118

Files

cb3dbf2f2be38bc291c5d5eeacd93546_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c435531a7d715e141796cd9c9d2c20d3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalGetAtomNameW
IsValidCodePage
GetDateFormatA
GetConsoleOutputCP
TlsSetValue
GetACP
TlsGetValue
GetLocaleInfoA
MultiByteToWideChar
GetTimeFormatA
EnumResourceTypesW
VirtualAlloc
HeapSize
SetStdHandle
SetUserGeoID
HeapReAlloc
RtlUnwind
GetOEMCP
GetCPInfo
WriteConsoleA
SetFilePointer
TlsAlloc
RaiseException

shell32

SHGetDataFromIDListW
SHGetFileInfoA
ShellExecuteExA
DragAcceptFiles
SHGetPathFromIDListA
SHBrowseForFolderA
Shell_NotifyIconA

user32

CharNextA
LoadStringA
PeekMessageA
DispatchMessageA
DispatchMessageW
MessageBoxA
GetDesktopWindow
wsprintfA

rpcrt4

RpcStringFreeA

Sections

.text
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ