db10a272f6a234ccc6021ff2b2444e34_JaffaCakes118 | Triage

Sharing

General

Target

db10a272f6a234ccc6021ff2b2444e34_JaffaCakes118
Size

44KB
MD5

db10a272f6a234ccc6021ff2b2444e34
SHA1

4791b97d12871a03bbb3cd19aa913cd4b9405c67
SHA256

ca34ae2c05e708d668058dbc4b0dadb7ad6a532e45dc63075002a9bcaa3717cd
SHA512

038e24360acb880a9f5bdb2c2a8c142254dfb41c38b4a4c6a2952048a84187982b7323a2f5b2d2465fd8565450631573765e977d307a7b88aef087d0a5ce2c05
SSDEEP

768:83n3G3j3qrJFTQTz/BoBrlKLXZ1ufT1LTRPYF2KvNdVSNode:83n3G3j3sqB6lKXufhLNYbvNbDe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
db10a272f6a234ccc6021ff2b2444e34_JaffaCakes118

Files

db10a272f6a234ccc6021ff2b2444e34_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d2abc4307e9b1064bf1e1bfd61bda1da

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
GetTempFileNameA
GetLocalTime
LoadLibraryA
OpenMutexA
FindAtomA
CreateMutexA
ExitProcess
CreateFileA
lstrcmpA
CloseHandle
lstrlenA
GetVersion
GetTempPathA
GetSystemTime
lstrcpyA
GetTickCount
WriteFile
GetCommandLineA
CreateProcessA
GetLastError
GetProcAddress
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
VirtualQuery
GetVersionExA
RtlUnwind
IsDebuggerPresent

user32

GetCursorPos
GetCaretPos
ClientToScreen
EqualRect
IsWindowVisible
GetWindowRect
GetFocus
InflateRect

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE