10afbebe3ce87eef852a51b8c34e0ae3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

10afbebe3ce87eef852a51b8c34e0ae3_JaffaCakes118
Size

183KB
MD5

10afbebe3ce87eef852a51b8c34e0ae3
SHA1

c5cec2e6d9c90bd8633ded806526a8110d39f4dc
SHA256

9aa3aa436e77ce227b4e18e9d0cf4516e42ee2e92706aeb2fbfa49e0286419f4
SHA512

d92584533e88173fe0ce13dd9f175714fe0ab16c5cc3fcbc77395b7c08b69944ec8d4319fd1142199e454b278d6c6be7917b23cfb8bf74c03bd2c4f83c2eb610
SSDEEP

3072:HkdofYa3Tt8BMEIzUVao+SPQ8zSDaglCbR5KQsfnBBSC1t8v9NJFanB7Q:EufYmt8BFao+SPLeCbRPuBd1tz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
10afbebe3ce87eef852a51b8c34e0ae3_JaffaCakes118

Files

10afbebe3ce87eef852a51b8c34e0ae3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

66da8084caf1fadac1812664fc3415fb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

ExcludeUpdateRgn
RealGetWindowClassA
FlashWindow
SetCapture
InvalidateRgn
IsWindow
ValidateRect
ReleaseCapture
DestroyWindow
EnableWindow
UpdateWindow
GetCapture
ValidateRgn
IsWindowEnabled
GetUpdateRgn

kernel32

CompareStringA
FindResourceW
ConvertFiberToThread
GetLocalTime
SetEnvironmentVariableW
LCMapStringW
FindClose
FindFirstFileW
FileTimeToSystemTime
FreeLibrary
SetThreadIdealProcessor
LoadResource
LocalFileTimeToFileTime
GetOEMCP
FindNextFileW
EnumResourceNamesW
LocalFree
GetCurrentProcess
RegisterWaitForSingleObject
SystemTimeToFileTime
SetErrorMode
IsBadReadPtr
SetCurrentDirectoryW
GetStringTypeW
GetSystemDirectoryW
GetShortPathNameW
LocalAlloc
FileTimeToLocalFileTime
SearchPathW

mprapi

MprConfigServerConnect
MprConfigServerDisconnect
MprConfigGetFriendlyName

Sections

.text
Size: 119KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imul
Size: 512B - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ