139c253b07cefe726b69fda2db70018d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

139c253b07cefe726b69fda2db70018d_JaffaCakes118
Size

286KB
MD5

139c253b07cefe726b69fda2db70018d
SHA1

5b8a7a31c51637df8556a7a0b1121ff3895435cb
SHA256

97b7b94b28935ac6d8e9f8ddee9609a5d9d07e4ef316b1aab37a383dd62012e6
SHA512

72918225cc130829f6e37ee7de7127ac701bd1b070b0f8d6b587a7e57a494808f3d3bbcf3072486847157677aedb1b9e3909dd1c569094c2d65a37165dec31d2
SSDEEP

6144:r71Lc+fvbXjvMPWy5Y/qWIsbNenSglKDnmmU29+IOc:r7PfrjvYYqWI+enDlKDn3U2o9c

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
139c253b07cefe726b69fda2db70018d_JaffaCakes118

Files

139c253b07cefe726b69fda2db70018d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

9cce40eee4d49e8d799bcf12193d8fd2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetInputState
EndDialog
ValidateRect
OemToCharBuffW
GetActiveWindow
VkKeyScanA
SetWindowPos
GetOpenClipboardWindow
SetWindowTextA
DialogBoxParamA

ole32

CreateDataAdviseHolder
WriteClassStg

kernel32

AreFileApisANSI
GetCPInfoExA
GetCurrentActCtx
LocalAlloc
HeapDestroy
HeapCreate
LocalFree
GetModuleHandleW
GetProcAddress
GetNativeSystemInfo
GetProcessWorkingSetSize
HeapFree

Sections

.text
Size: 265KB - Virtual size: 264KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ