15e09cf14f2c91105959d8e23d690909_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

15e09cf14f2c91105959d8e23d690909_JaffaCakes118
Size

56KB
MD5

15e09cf14f2c91105959d8e23d690909
SHA1

4e79960a351f0824df8540b6ee5d754d46ad2f04
SHA256

5f7c35bf944b409829d39fdbf39ade4fef93b3510ef3b4abf50dfa722f7107f5
SHA512

1d2f38b1ddd3936ab9775e5d17d4f1c1f60b6ebcfa74fc75d6a8a66cb444ce66901e88d1adda103cfaf9ad8657e3f0d5b3d9976b0209afa5c85490876353513e
SSDEEP

1536:KTRRk98J2DAFzeCFYpBhUVmO3XLjuFh2SzUWePnKe8tawvZMA/1p:KTRRym2DAFzeaYpBhUVjHmuSt8N8tawh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
15e09cf14f2c91105959d8e23d690909_JaffaCakes118

Files

15e09cf14f2c91105959d8e23d690909_JaffaCakes118
.exe windows:4 windows x86 arch:x86

611f0476cb6e3a881ab30ffe68b13e4a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindAtomA
TlsGetValue
LoadLibraryExW
FindClose
GetACP
CreateMutexA
FreeEnvironmentStringsA
MapViewOfFile
HeapCreate
ExitProcess
GetModuleHandleA
GlobalUnlock
GetLastError
Sleep
lstrlenA
CreateFileA
SetupComm
LocalFree
HeapDestroy
CloseHandle

user32

GetDC
DefWindowProcW
GetFocus
GetIconInfo
GetDlgItem
DrawMenuBar
CheckRadioButton
IsWindow
DrawEdge
CopyRect
DispatchMessageA
FillRect
CallWindowProcA
MessageBoxA

uxtheme

GetThemeSysInt
DrawThemeEdge
DrawThemeIcon
GetThemeRect
DrawThemeText

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ