f0a784b42ac2f1d1ef78509a8bdcb087_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f0a784b42ac2f1d1ef78509a8bdcb087_JaffaCakes118
Size

20KB
MD5

f0a784b42ac2f1d1ef78509a8bdcb087
SHA1

6c43250f009d613b70e617b82fbe12a26d01627f
SHA256

14c5f6850a5ddb87c2b80ef08eef1e3339a97625ae7fb5f75231351435e3c641
SHA512

ce5c0513209942285f00e5b809d919476426625f934a4135842b1629b5e5e4355693bbc02318377f13f9e8bc5382ecdb76a5f0f729f16a98aca11fa3e3e52ad1
SSDEEP

384:tTe0QBtn1BrgMV6FIAyuOZ3nEEPugRwUY1ND5rawwN:Y04uphra1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f0a784b42ac2f1d1ef78509a8bdcb087_JaffaCakes118

Files

f0a784b42ac2f1d1ef78509a8bdcb087_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4a20ce85679170ee64ca1362080f3608

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBeep
GetTopWindow
MessageBoxA
DialogBoxParamA
LoadIconA
ArrangeIconicWindows
CharUpperA
IsIconic
CharNextA
DestroyIcon
FlashWindow
GetSystemMetrics
RegisterWindowMessageA
ShowWindow
UpdateWindow
EnableWindow
SetCursorPos
CharLowerA
GetSysColorBrush
SetTimer
ShowCursor
GetMessagePos
SetWindowTextA
GetMenuItemCount
GetDesktopWindow
ReleaseDC
GetParent

kernel32

FreeConsole
GlobalFindAtomA
FreeLibrary
GetProcAddress
LoadLibraryA
lstrcatA
GlobalDeleteAtom
lstrlenA
GetConsoleCP
Sleep
GetLastError
OutputDebugStringA
GlobalAddAtomA
CopyFileA
AllocConsole
FindResourceA
GetConsoleOutputCP
GetCommandLineA

shell32

ShellAboutA

gdi32

SetBkMode
CreateCompatibleDC
SetTextColor
GetObjectA
GdiGetBatchLimit
DeleteDC
DeleteObject
SetBkColor
EndPage
CreateSolidBrush

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ