d67f6ede2d164588dbeeea30a73fe573_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d67f6ede2d164588dbeeea30a73fe573_JaffaCakes118
Size

19KB
MD5

d67f6ede2d164588dbeeea30a73fe573
SHA1

410e8cff15142a5d577e53e50390e3f7d4848c8a
SHA256

384506bfeee803cc18a446f0dd20e40c97d5407a1847222eb95e9696ac6b1965
SHA512

cb6400e828e7b76e012f4d942e343bdc8515522a00b2cf7a4d9439a9b357cbb909c86eb49a91498ebafbaff965df4ad4c8e192d8fa4fde574fc5026ffbb0e486
SSDEEP

384:1mP3lnyER1kTdQ1aaJajsMmecjG8g3Bw8:EP35yERCSVMmKPv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d67f6ede2d164588dbeeea30a73fe573_JaffaCakes118

Files

d67f6ede2d164588dbeeea30a73fe573_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1205b576c83d7a288e7f7dc552e04b70

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapReAlloc
GetProfileIntA
lstrlenA
WaitForMultipleObjects
GlobalUnlock
VirtualProtect
GetSystemDefaultLangID
WaitForSingleObject
CompareFileTime
GetConsoleCP
TlsFree
LoadLibraryExA
GetVersion
CloseHandle
InterlockedExchange
HeapCreate
GetModuleHandleA
GetTickCount
AddAtomA
GetCommandLineA
GetStdHandle

user32

PaintDesktop
PostMessageA
GetWindowTextA
FindWindowA
GetDlgItem
UpdateWindow
ModifyMenuA
MessageBoxA
GetKeyboardLayout
SetPropA
ShowWindow
GetKeyState
InsertMenuA
SetWindowPos
TranslateMessage
GetMenuStringA
SubtractRect
CreateCursor
DialogBoxParamA
DestroyMenu
EnableScrollBar
EqualRect
DispatchMessageA
CopyRect
CreateCaret

msi

MsiDoActionA
MsiEnumProductsA
MsiEnumClientsA
MsiCloseHandle
MsiGetMode

ws2_32

WSAAccept

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ