06abb6b8650113c55451511f47ce7e7d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

06abb6b8650113c55451511f47ce7e7d_JaffaCakes118
Size

10KB
MD5

06abb6b8650113c55451511f47ce7e7d
SHA1

8a7daacd863caec1d5612fac30e780b753660ad7
SHA256

b210367a805ddb1339bd6b8b56eedb66a6dbca7ec31eeee5aa9fd12293381a9c
SHA512

234b5f3e14ce34122416f597cd9b658ab08e4b55c014e555b75d1606ef9473294938dcca0a321277a7aecd2fc95024ff6369947c598f78f2616c09fc633a6469
SSDEEP

192:L05+ravWIAb40zDnBpRwtL3KUptn62lN:L05+WWjvDnBpRwVDpB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
06abb6b8650113c55451511f47ce7e7d_JaffaCakes118

Files

06abb6b8650113c55451511f47ce7e7d_JaffaCakes118
.exe windows:1 windows x86 arch:x86

88caafa36ebaf52eaefe3389fe6de152

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

Shell_NotifyIconA

kernel32

GetCommandLineA
GetLastError
GetModuleHandleA
GlobalMemoryStatus
RtlUnwind
CreateMutexA
lstrcpynA

user32

DialogBoxParamA
EndDialog
DefDlgProcA
GetDlgItem
SetDlgItemInt
GetDlgItemInt
SetDlgItemTextA
SetFocus
LoadCursorA
LoadIconA
SetTimer
KillTimer
RegisterClassA
LoadStringA
DestroyIcon
SendMessageA
SetWindowPos
EnableWindow

comctl32

InitCommonControls

crtdll

__GetMainArgs
exit
free
malloc
memset
raise
signal
strchr

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 96B - Virtual size: 96B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE