de56d065b92c19183aac896da4490289_JaffaCakes118 | Triage

Sharing

General

Target

de56d065b92c19183aac896da4490289_JaffaCakes118
Size

123KB
MD5

de56d065b92c19183aac896da4490289
SHA1

5b555cbaa139169d2b8deca55c5ee2df31779aa7
SHA256

b8c197c2c09eb1d97b29add291520536dc305ae2665910b1b1fb2db8e1ae6d5d
SHA512

ff7ee41a17718ae6b8cf582f7e260cb1df23e7b7d6beb9db3e7143ef53182964442aa1e61e58c6973ea80b4fd26fc3d840adfcdfb1e05eb3e32fb03daac5dc54
SSDEEP

3072:7xHBWuljCbZ2hqSMCw5wbdTTf1N/zZYj:7xHMqubZLCwy9v/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
de56d065b92c19183aac896da4490289_JaffaCakes118

Files

de56d065b92c19183aac896da4490289_JaffaCakes118
.exe windows:5 windows x86 arch:x86

73a54c59137ae43492cd7f69edf1f7f4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsWindowEnabled
IsIconic
BeginPaint
EndPaint
GetDesktopWindow
GetClientRect
GetClipboardOwner
LoadIconA
DialogBoxParamA
EnableWindow
EnableScrollBar
IsDlgButtonChecked
SetWindowTextA
GetUpdateRect

gdi32

RectVisible
IntersectClipRect
GetTextColor
ExcludeClipRect

kernel32

GetThreadLocale
GetLastError
GetDateFormatA
SetFileAttributesA
HeapDestroy
GetEnvironmentVariableA
GetEnvironmentStrings
GetModuleHandleA
InitializeCriticalSection
EnterCriticalSection
HeapFree
SetEndOfFile
ExitProcess
GetTickCount
HeapAlloc
FreeLibrary
HeapCreate
GetProcAddress
LoadLibraryA
WideCharToMultiByte
DeleteCriticalSection
LeaveCriticalSection

Sections

.text
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ