01a51a149bbeaa7c9ac36d5e4c13cbc0_JaffaCakes118 | Triage

Sharing

General

Target

01a51a149bbeaa7c9ac36d5e4c13cbc0_JaffaCakes118
Size

308KB
MD5

01a51a149bbeaa7c9ac36d5e4c13cbc0
SHA1

53255cb656eb77b71679c3a2a821c2b38efe0c93
SHA256

24e5e6a601d4d225391a3bd8ca92b6916ad6b6d654c711b7d83d643877a6cb8e
SHA512

c26a7bfd6babe769349ce55ab4186de5306da889c0243f0a3c11cbacc861868b9dda66017668fb1bc259c15937545219c57deb333428d22f1042406aa8839611
SSDEEP

6144:0m2Xfge2oNEuoiUJxnP3o2g4W413Ogvi4mQHHg2MWE34+rBq:0Jb26Euo/P3ZT8gXVH6WE34AB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
01a51a149bbeaa7c9ac36d5e4c13cbc0_JaffaCakes118

Files

01a51a149bbeaa7c9ac36d5e4c13cbc0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

70840708b8ca0f708d393f93e7146019

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetExitCodeProcess
SetFileTime
InitializeCriticalSection
CreateMutexW
FindResourceW
GetStartupInfoW
GetLastError
ReadFile
HeapCreate
lstrcpyA
CloseHandle
GetModuleHandleA
lstrcatA
IsBadWritePtr
SetFileTime
GetFileSize
LoadLibraryA
FormatMessageW
CreatePipe
LeaveCriticalSection
SetFileTime

mstscax

DllUnregisterServer
DllGetClassObject
DllRegisterServer
DllCanUnloadNow

user32

GetWindowLongW
PostMessageW
IsDialogMessageA
DispatchMessageA
MessageBoxA
PostMessageA
wsprintfA
GetWindowTextA
SetFocus
IsWindow
LoadCursorW
GetWindowRect
PeekMessageW

clbcatq

SetSetupSave

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rich
Size: 1KB - Virtual size: 193B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 293KB - Virtual size: 293KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ole
Size: 512B - Virtual size: 112B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE