f0555b0736f449b6bc752b7a328c0be5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f0555b0736f449b6bc752b7a328c0be5_JaffaCakes118
Size

340KB
MD5

f0555b0736f449b6bc752b7a328c0be5
SHA1

d563e09137118609e544771b52f528f0ceb2213d
SHA256

b7313627c2a8abc31bfa4e25243048f3262519ba30cabc467b2efe4f610b2a12
SHA512

b74da9b7b273db59f0ed3037f0de44bd4e4ba1d63cd89429fddfc343af5f90dea7329bad667df2d8a8db4642bb7f93a13cb9f7f623539885c478bdc5ad4fe930
SSDEEP

6144:kt9Y7dKF7Yta2UM5IxXF/tIKAL7iFE7sNBo+aa9R3HJxvkSuM4Pyd5qJ:QY71tUM5aV/oLOVfhaa9ZpVRK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f0555b0736f449b6bc752b7a328c0be5_JaffaCakes118

Files

f0555b0736f449b6bc752b7a328c0be5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

09c7fd5b61abde94e19ce4b4462c8252

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
GlobalLock
CreateFileA
GetStdHandle
GetDriveTypeA
FreeEnvironmentStringsA
lstrlenA
CreateEventA
DeleteTimerQueue
HeapCreate
GetModuleHandleA
GetACP
GetConsoleCP
IsBadReadPtr
GetLastError
MapViewOfFile
FindClose
LoadLibraryExA
LocalFree
GlobalUnlock

user32

SetFocus
GetDlgItem
ClipCursor
GetDlgItemTextA
GetSubMenu
CheckMenuItem
GetParent
EndDialog
DialogBoxParamA
GetMessageA
IsMenu
RedrawWindow
CreateWindowExA
DrawIconEx

apphelp

SdbFindFirstTag
SdbCloseDatabase
ApphelpShowDialog
ApphelpCheckRunApp
ApphelpCheckIME

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ