cf92c3e8b114f03b2a6f8be15493e59d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cf92c3e8b114f03b2a6f8be15493e59d_JaffaCakes118
Size

1.7MB
MD5

cf92c3e8b114f03b2a6f8be15493e59d
SHA1

67de7cddccd5eecf66dd10e981f7d6bced2e4189
SHA256

42a6e32ce93d1fa8c78865c89633cdb0ae2ebf96b577a09e925a4572ffe57325
SHA512

2e86960c16d5e8816b5caab3f7715c8b9bbce79efd8f562ca2de6490ade599ced72e697f4be1b4d6a90ee09738a24f9ea75e79f7b009cafc1ab01cda9a89ec42
SSDEEP

24576:qcXs6KkUeojZpfbdBvu/4jUQimlvg4vmYwdCp/YSETG2wFEnITBaN+ga2vkg/J0S:qcXmeKfI+EAp/YHTJv0ENvvkg/r6O4LA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cf92c3e8b114f03b2a6f8be15493e59d_JaffaCakes118

Files

cf92c3e8b114f03b2a6f8be15493e59d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ef9957bde92cdb17fee7603db04d6196

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA
GetDC

kernel32

GetModuleHandleA
GetEnvironmentVariableA
ExitProcess
FormatMessageA
GetLastError
SetLastError
GetProcAddress
VirtualProtect
LoadLibraryA
VirtualFree
VirtualAlloc
GlobalAlloc
SetFilePointer
ReadFile
CreateFileA
GetModuleFileNameA
LoadLibraryA

advapi32

FreeSid

comctl32

ImageList_Add

comdlg32

PrintDlgA

gdi32

SaveDC

ole32

OleRun

oleaut32

VarNot

shell32

DragFinish

urlmon

HlinkNavigateString

version

VerQueryValueA

wininet

InternetOpenA

winmm

joyGetPos

winspool.drv

OpenPrinterA

wsock32

inet_ntoa

Sections

.text
Size: 38KB - Virtual size: 2.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE