1059899315d9bbf5c34b2a6b10384b82_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1059899315d9bbf5c34b2a6b10384b82_JaffaCakes118
Size

26KB
MD5

1059899315d9bbf5c34b2a6b10384b82
SHA1

6dc31324cd60171bf198bf5c5b43beda5b9f0d17
SHA256

c4d8f253f9d178e901bd7a03de8f566be0d25cdf8f45976fff5594364756e35e
SHA512

38676b54cc45f62e80b33be6170820ab3ca8ce5641ecae3787d277dc40804c445889d923dfb7ec66b2fea89cfc383fe6c0320642bd04c22596a129ad254f9102
SSDEEP

384:ALZ5bdTE8Oo1yCRTVmbb8gMoHJFZfXUzc45ljOKA+ZVdbAEM6JMdrKgyb:aFBOgyCRBmbbh59XHMljjT3kGvb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1059899315d9bbf5c34b2a6b10384b82_JaffaCakes118

Files

1059899315d9bbf5c34b2a6b10384b82_JaffaCakes118
.exe windows:4 windows x86 arch:x86

be091283ddf5fd7bd6cb9a71140955c9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumSystemLocalesW
FreeUserPhysicalPages
CreateProcessInternalA
OpenMutexW
GetUserDefaultLCID
ExtendVirtualBuffer
EndUpdateResourceW
Process32Next
FindFirstChangeNotificationW
WriteConsoleOutputW
BaseDumpAppcompatCache

user32

CreateCaret
CreateAcceleratorTableW
CreateDialogIndirectParamA
SetProcessWindowStation
ReleaseCapture
CreateAcceleratorTableW
GetUpdateRgn
OpenDesktopW
ShowCursor
UpdatePerUserSystemParameters
GetAltTabInfoW
UnregisterClassW
EnumPropsW
SetScrollPos

Sections

.text
Size: 23KB - Virtual size: 28KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ