fea40f9776b37f0b379b85f7f1366903_JaffaCakes118 | Triage

Sharing

General

Target

fea40f9776b37f0b379b85f7f1366903_JaffaCakes118
Size

385KB
MD5

fea40f9776b37f0b379b85f7f1366903
SHA1

fc0133fc33bd720d9b34a10cf943cd0cca2d11a4
SHA256

9ed3bbdb056c2c540f27d58bb58978ca3665d3df5559ff5aa671c7bc061628ca
SHA512

1f43b49d85397dd4dfcb2e0dd4644f7439a4c4e0653629ce38e19c20c32c7aa2dad319f351f6af827324b448a4c08c1130927588d80df4ca854133244c64558f
SSDEEP

12288:MEwEtatBkY2Ng5xkfQ5JXiD0PE+2LMo9bQ:QBL2C5xkWJXl8bBk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fea40f9776b37f0b379b85f7f1366903_JaffaCakes118

Files

fea40f9776b37f0b379b85f7f1366903_JaffaCakes118
.exe windows:5 windows x86 arch:x86

7c9d01f726d1d4e0c09e6d3b301cfcf9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetBinaryTypeA
CreateFileA
ExitProcess
CloseHandle
ReadFile
SetFilePointer
GetFileSize
GetModuleFileNameA
GetModuleHandleA
HeapFree
GetProcessHeap
HeapAlloc
VirtualAlloc
VirtualFree
UnmapViewOfFile
MapViewOfFileEx
CreateFileMappingA
GetProcAddress
LoadLibraryA

user32

SetCursor
LoadCursorA
RemoveMenu
ClientToScreen
GetSystemMetrics
GetWindowLongW
GetWindowDC
ModifyMenuW
GetAltTabInfoA
CopyIcon
ShowCursor
GetDlgItemTextW
InSendMessage
GetDC
GetDesktopWindow
MonitorFromWindow
GetSysColor
OemKeyScan
CreateWindowExA
RegisterClassA
LoadIconA
DefWindowProcA
GetOpenClipboardWindow

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 324B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 696B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ