01925a4f725356c4c6ceb7b348748bb3_JaffaCakes118 | Triage

Sharing

General

Target

01925a4f725356c4c6ceb7b348748bb3_JaffaCakes118
Size

24KB
MD5

01925a4f725356c4c6ceb7b348748bb3
SHA1

733036938c940f3f7727376feaf60981d5ae4e9b
SHA256

e4ae2f306d7cca94d70838c41f02eebdaa8acc0a40c49b9a3791711c5f09d1f9
SHA512

ec39294adf0160aeb95bcf33cfc057d7b0d10f397aac7ac784b987a3a60e647f9598213ca3c225ef1a0f6a9ffb75f79b2f3bf65e30ba489e0d4833a187d174b0
SSDEEP

192:d2TUOCx8NsntqtCf/JMGxEdvwNkAX304Kv1MveCq+hIJ8rmC:oY6NKqMyVqw4Kvx1+IW5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
01925a4f725356c4c6ceb7b348748bb3_JaffaCakes118

Files

01925a4f725356c4c6ceb7b348748bb3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f1ba8ca013e68e020ee7891415973249

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
GetLastError
GetModuleHandleA
GetStdHandle
GetStartupInfoA
GetCommandLineA
LocalAlloc
CreateEventA
GetVersionExA
GetFileSize
CloseHandle
lstrlenA
GlobalFree
Sleep
GlobalAlloc
FreeLibrary
lstrcatA
GetTickCount
lstrcpyA
LocalFree

user32

GetClientRect
ScreenToClient
TranslateMessage
GetWindowRect
GetFocus
DefWindowProcA
EndPaint
BeginPaint
ShowWindow
SetWindowTextA
GetSysColor
DestroyWindow
DialogBoxParamA
PostQuitMessage
DispatchMessageA
MessageBoxA
LoadIconA

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ