060e083cfacff1cb782122a0e530fb67_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

060e083cfacff1cb782122a0e530fb67_JaffaCakes118
Size

636KB
MD5

060e083cfacff1cb782122a0e530fb67
SHA1

7a447fe10e6e56bc350a16c02a63e31b2fbee5e5
SHA256

6781482265dfff15024e78843bfa55fab09e1fc1433241fe0f7954baadffc815
SHA512

e60d2920fad929e50c2aea04787260aabd88dd9a64d86dc4fe07da2498d56ac4ff93b894d58983c0f0363566c8a19e6fbd717770f578573a67cec61c972853a0
SSDEEP

12288:NmFhr395JN/RHya7lDSyQIOBA5AmyG3sOOmUzCoS1vsIfjm:NIhfb/RSaxD5/OBA5AmyQsOtUmHlfj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
060e083cfacff1cb782122a0e530fb67_JaffaCakes118

Files

060e083cfacff1cb782122a0e530fb67_JaffaCakes118
.exe windows:4 windows x86 arch:x86

17314f4a55dcf1813c50193225c05d8a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedExchange
GetACP
LocalLock
GetConsoleDisplayMode
GlobalSize
GetSystemTime
GetConsoleCP
GetModuleHandleA
GetAtomNameA
ResumeThread
WaitForSingleObject
LoadLibraryExA
WaitForSingleObject
lstrlenA
SetLastError
GetUserDefaultLangID
GetVersion
HeapReAlloc
GetCommandLineA
VirtualProtect
HeapCreate

user32

SetForegroundWindow
GetClassNameA
GetTitleBarInfo
GetDC
ReleaseDC
FrameRect
DragDetect
CreateIcon
GetFocus
GetWindow
EndPaint
BeginPaint
DrawTextA
wsprintfA
ShowWindow
GetCursorPos
FillRect
AnyPopup
GetParent

ntshrui

GetNetResourceFromLocalPathA
DllCanUnloadNow
GetLocalPathFromNetResourceA
DllGetClassObject
SetFolderPermissionsForSharing

msacm32

acmFilterEnumA

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ