10b7cfbc6682a1ebe64d94f31cdf745a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

10b7cfbc6682a1ebe64d94f31cdf745a_JaffaCakes118
Size

8KB
MD5

10b7cfbc6682a1ebe64d94f31cdf745a
SHA1

4505aae3d44f770e9aff32354f4d99959ff015c9
SHA256

242b593b9dcca888fea9520b72e9635b3361324512e4449f617ace77329b88bc
SHA512

1aa2de436cc32152f9e52e2d9a1c33ac00a088e1e95e2cbd0af5e723ecfbda3ae6cf81a84c657b165a965778a68116c75d5e05843f1e11d6c8bcaae1c3628cca
SSDEEP

192:JLFT9o0YG+vQOePtIM9dcSVy544BCZ+Xc4i4gC/TlGXYG:zTF+LezdcSVy544BCK7lB/JYYG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
10b7cfbc6682a1ebe64d94f31cdf745a_JaffaCakes118

Files

10b7cfbc6682a1ebe64d94f31cdf745a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

337444e68da563f79451a354fe595240

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
LoadLibraryA
GetModuleFileNameA
GetProcAddress
lstrcatA
lstrcmpiA
ExitProcess
lstrlenA
CreateMutexA
GetLastError
lstrcpyA
GetModuleHandleA

user32

RegisterHotKey
DialogBoxParamA
DefWindowProcA
TrackPopupMenuEx
GetCursorPos
SetForegroundWindow
CheckMenuItem
PostMessageA
UnregisterHotKey
PostQuitMessage
EndDialog
GetDlgCtrlID
GetSysColor
SetClassLongA
GetDlgItem
SendDlgItemMessageA
LoadBitmapA
SetMenuItemBitmaps
GetMessageA
TranslateMessage
DispatchMessageA
LoadCursorA
RegisterClassExA
CreateWindowExA
MessageBoxA
SetMenuDefaultItem
LoadMenuA
GetSubMenu
LoadIconA
DestroyWindow

gdi32

CreateFontA
SetTextColor
SetBkColor
CreateBrushIndirect

advapi32

RegDeleteValueA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey
RegSetValueExA

shell32

ShellExecuteA
Shell_NotifyIconA

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ