d31b3ce88f176e678f8ea837692955c7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d31b3ce88f176e678f8ea837692955c7_JaffaCakes118
Size

131KB
MD5

d31b3ce88f176e678f8ea837692955c7
SHA1

13a4c14c090ca3a9fa7a4f392bdbc017ac8640ae
SHA256

9f9dda3132b106558d44f0ac0a67a20b424c8fe162f882caf5a6cc5079bbc017
SHA512

15183b4ce0f70278024dc535fb0ec85cb47c4451252fe753717ba03f0569bfe1ea051cf2261f0280318a6155f6af1736447bef014eafd90e92d12134c356a096
SSDEEP

3072:1Mqg34aUxUqJrRq1y0f03FeF4lkh2Phm46+q:1OmxtJrRqQ3ockh2Pb6+q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d31b3ce88f176e678f8ea837692955c7_JaffaCakes118

Files

d31b3ce88f176e678f8ea837692955c7_JaffaCakes118
.exe windows:5 windows x86 arch:x86

aa56f9a62d30bfde6415ed946b3f03fd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
VirtualFree
GetConsoleMode
VirtualAlloc
GetDefaultCommConfigA
CreateSemaphoreA
VirtualFree
CancelWaitableTimer
WriteConsoleOutputCharacterW
GetDllDirectoryA
SetTapeParameters
ExitThread
HeapFree
GetCommTimeouts
IsProcessorFeaturePresent

user32

GetSubMenu
ShowCursor
EnumWindowStationsA
PostThreadMessageW
GetWindowRect
InsertMenuItemA
MessageBoxTimeoutA
GetDlgItemInt
GrayStringA
GetClassNameA
PostThreadMessageA
EnumThreadWindows
SetClipboardData
GetDesktopWindow
DlgDirListComboBoxA

Sections

.text
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 175KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ