d5f8a356b1732420c28e261e66dbf127_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d5f8a356b1732420c28e261e66dbf127_JaffaCakes118
Size

9KB
MD5

d5f8a356b1732420c28e261e66dbf127
SHA1

83c5ff2f563157261a571241a020e97f070167cd
SHA256

05fcbe405cc8fefc891ef27a2b85ada478f379fbd923a8c19b76c0c171837b9d
SHA512

5d2ee9f207ab6ed9df9bac63871181a4420d27fddd100c2c79cd5e784b0d124518f02c6823f0f8de828872a8d924e4f8eb7ae58ffaf8760c5ee0830ee7c3e2ed
SSDEEP

192:KupMnonoOlRUelG/xSgRb4XT6P4CUXEG4O+zVSZQMM6J6t:KEMo5lC/Jb4GPXUXEGoBr6S

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d5f8a356b1732420c28e261e66dbf127_JaffaCakes118

Files

d5f8a356b1732420c28e261e66dbf127_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9414d0298362c93c0d016337c8ee9086

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AddAtomW
Beep
CreateFileA
DefineDosDeviceA
EnumCalendarInfoW
EnumSystemLocalesW
ExitProcess
GetDriveTypeA
GlobalSize
IsBadReadPtr
LocalFileTimeToFileTime
OpenMutexA
QueryDosDeviceW
ReadConsoleInputA
SetSystemPowerState
TryEnterCriticalSection
WritePrivateProfileStringW
WritePrivateProfileStructA
_lread
lstrcpy

user32

AdjustWindowRectEx
CallMsgFilterA
ChangeMenuA
CharLowerBuffW
CloseWindow
CreateCaret
DdeDisconnectList
DragObject
EnumDesktopsW
GetClassInfoW
GetDlgItemTextW
GetMenuState
GetPropA
GetQueueStatus
HiliteMenuItem
MessageBoxIndirectW
SendIMEMessageExW
SetClipboardData
SetMenuContextHelpId
TranslateAcceleratorA
ValidateRect
VkKeyScanExA

gdi32

CombineTransform
CopyEnhMetaFileW
CreateDiscardableBitmap
CreateFontA
EnableEUDC
EnumFontFamiliesA
EnumFontsA
ExtCreateRegion
GdiPlayScript
GetArcDirection
GetCharABCWidthsW
GetClipBox
GetEnhMetaFileDescriptionW
GetPaletteEntries
GetWinMetaFileBits
OffsetRgn
PolyBezier
PolyTextOutA
Polygon
SelectObject
SetBrushOrgEx
SetICMProfileW
StartDocA
UnrealizeObject

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE