069653c428444d12bfda3206daa2ee2a_JaffaCakes118 | Triage

Sharing

General

Target

069653c428444d12bfda3206daa2ee2a_JaffaCakes118
Size

355KB
MD5

069653c428444d12bfda3206daa2ee2a
SHA1

efe12edd83f442f17e4112df5e18b71a35e53620
SHA256

cab1fef593ec4146350554b258a7ae06c75bcfc4b0b6477a5c790405af7d5cb2
SHA512

18d1083ad2b61a76b8c521a530f7164c5945a076995d1f312cde080985861dac71f39501a0f257168f363f4a4972de2a7415da6b45bcc62cba99697d3bd32432
SSDEEP

6144:m+JNOsgD7YpFAyVYxl/djX6OlCjnG66O+bzIZnw5ESbn7UKX67XJaA5SnLd:3jOFgpFuxlljNlCd6BfSUxnQa+XILd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
069653c428444d12bfda3206daa2ee2a_JaffaCakes118

Files

069653c428444d12bfda3206daa2ee2a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1659532340f960b427d02ee28e8b154d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
CloseHandle
FindAtomA
GetStdHandle
InterlockedExchange
LoadLibraryA
GetTickCount
GetACP
HeapWalk
GlobalUnlock
CompareFileTime
VirtualProtect
GetAtomNameA
GetModuleHandleA
GetProfileIntA
lstrlenA
HeapReAlloc
GetConsoleCP
TlsFree
GetVersion
TlsGetValue

user32

PostMessageA
ShowWindow
PaintDesktop
DialogBoxParamA
UpdateWindow
InsertMenuA
LoadIconA
GetKeyboardLayout
DestroyMenu
DispatchMessageA
CreateCaret
EnableScrollBar
GetMenuStringA
TranslateMessage
SetWindowPos
MessageBoxA
SetPropA
GetMenu
GetDlgItem
GetWindowTextA
ModifyMenuA
EqualRect
SubtractRect
CopyRect
InflateRect

msi

MsiGetMode
MsiCloseHandle
MsiDoActionA
MsiEnumClientsA
MsiEnumProductsA

ws2_32

WSAAccept

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 512KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 94KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ