eaaf0ae993739d78f59a131a9abfe325_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

eaaf0ae993739d78f59a131a9abfe325_JaffaCakes118
Size

814KB
MD5

eaaf0ae993739d78f59a131a9abfe325
SHA1

e6a9313bf99035b9db2c640801d59634a35ef640
SHA256

a631d8cb6aba8cb0d7f71f43ac7489e40cfd9d4d02d3098ccabf0c69969bb435
SHA512

87ecfef1f4c63cd900e58296ed06df37a63c3d425b5433b6b1dcc3b895b9e70d3aa50f90d56900251c0d7b232492cd6c962d27bdc857385272e1fa34e80b4f0f
SSDEEP

24576:pe71QSNT8kfKNBZ1JHD7z44RDpIV7mntqRPMg5P:pe72ShfKnRo4K7maPMgl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
eaaf0ae993739d78f59a131a9abfe325_JaffaCakes118

Files

eaaf0ae993739d78f59a131a9abfe325_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a4b1bbfc6ae824f1559743f85ff5c46e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeEnvironmentStringsA
FindResourceA
ExitThread
TlsGetValue
SetConsoleCursorInfo
LoadLibraryExW
HeapDestroy
GlobalFree
SetLastError
HeapCreate
Sleep
CreateMutexA
ReleaseMutex
UnmapViewOfFile
GetLastError
GetACP
GetModuleHandleA
CreateFileA
FindClose
LocalUnlock

user32

IsWindow
DrawMenuBar
CopyRect
GetIconInfo
DrawEdge
DefWindowProcW
DispatchMessageA
CallWindowProcA
FillRect
GetFocus
GetDC
GetDlgItem
CheckRadioButton

uxtheme

DrawThemeEdge
GetThemeRect
DrawThemeText
GetThemeSysInt
DrawThemeIcon

clbcatq

SetupOpen

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ