0670f15505eaa244d8c228ef0484346f_JaffaCakes118 | Triage

Sharing

General

Target

0670f15505eaa244d8c228ef0484346f_JaffaCakes118
Size

157KB
MD5

0670f15505eaa244d8c228ef0484346f
SHA1

498433c5b852e1b9ec95b8cdd14c88ed0c9c547f
SHA256

d7dd8c48864742fea1becdc7bd32495891262cf51fd117ede87183fbbb9bd817
SHA512

608401060ec34255fc1e57b729ffb210c031a45d076404ac283f573de98e9c841ecec13cf9e7ad9ab4ddf7f91f66b9bb27e22ceab9385690c51817703637090d
SSDEEP

3072:pGEjvo/GNeHlqL/PTDmPGFeN4/jT8pdLUT2LUQ3icAC4:pLLI0L/PT2I9/wd4TOP4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0670f15505eaa244d8c228ef0484346f_JaffaCakes118

Files

0670f15505eaa244d8c228ef0484346f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

ccfec27c45c126e560310fe3de8712dd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadMenuA
AppendMenuW
BeginPaint
GetWindowTextLengthA
DialogBoxParamA
DrawIcon
GetMenu
CalcMenuBar
DrawTextA
CloseWindow
AlignRects
CreateIcon
DrawIconEx
GetDC
EndDialog
CopyRect
DrawTextW
IsMenu
DialogBoxParamW
GetWindowTextA
GetCursor
CopyImage
CopyIcon
BlockInput

kernel32

FlushFileBuffers
FindAtomW
FatalExit
GetCPInfo
GetFileTime
CopyFileA
GlobalFree
OpenFileMappingA
OpenFile
CopyFileExA
WriteFile
GetLastError
FindClose
GetLocalTime
DeleteAtom
CopyFileExW
GetFileType
CreateDirectoryA
GetPriorityClass
GetCommandLineA
ExitProcess
ExitThread
AddAtomA
FindAtomA
DeleteFileA
DeleteFileW
AddAtomW
ReadFile
FreeResource

Sections

.b2eb7
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.gc9hd
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.9fe39
Size: 109KB - Virtual size: 436KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.e9db
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gf62
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE