0b1453f804f6f3a4f23db70215e2080e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0b1453f804f6f3a4f23db70215e2080e_JaffaCakes118
Size

244KB
MD5

0b1453f804f6f3a4f23db70215e2080e
SHA1

95710865861e7bfce055a9fbfaed50bd75294128
SHA256

d3c8decd57870e82ab3992de2fa349c7141fae8644a3504352f15bee9fe2bac3
SHA512

fe2b68d1c0614bed9c013a9db23b89b58cd903065252c94d7f0a31c7fcbf23ee685ca9de776a9377654e2baafba4e7628d070ea03d28879024fe360f8037bc22
SSDEEP

3072:JoTQGJwRzHspy2/mFP4L0c8AvFt0S0QzUWa1mhTFzvVs9aBY:ueRzQy1PsjISPC1m7zvVsQBY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0b1453f804f6f3a4f23db70215e2080e_JaffaCakes118

Files

0b1453f804f6f3a4f23db70215e2080e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e583fdd31e39cd30fc0832ee5f30619e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DrawTextA
GetDlgItem
IsMenu
CopyIcon
GetScrollPos
DialogBoxParamW
AppendMenuA
GetWindowTextA

kernel32

HeapFree
GetCPInfo
GetLastError
lstrcatA
CopyFileExA
GlobalFree
GetCommandLineA
OpenFileMappingA
CreateDirectoryA
GetStdHandle
CompareStringA
FreeResource
ReadFile
lstrlenA
WriteFile
ExitProcess
GetFileType
DeleteFileW
ExitThread
FindClose

advapi32

RegEnumKeyW
RegQueryValueExW
RegEnumValueW
RegCreateKeyExW
RegLoadKeyW
RegDeleteValueA
RegQueryValueW
RegQueryValueExA

Sections

.cc31e
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.dg3a3
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.0c0e
Size: 206KB - Virtual size: 486KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.d58ad
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ