16b74bd27a9b885afb323bc7b900aeea_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

16b74bd27a9b885afb323bc7b900aeea_JaffaCakes118
Size

153KB
MD5

16b74bd27a9b885afb323bc7b900aeea
SHA1

228efe1771d5a186861df97c891583dc333a0b35
SHA256

be1a92d68b3744c452e55175296eeb703e11b1e468564f501941ec547e6f0c81
SHA512

a373457ef175be60b7fbdf4feae6cbed1e70e4e175af83d181d6c007b7aae1ddb05c0cb464e93cb97df7aef802f8f8b455b29a78d27e4646690ae497509ba2cd
SSDEEP

3072:dR/T5OzYjQI4yOe0mCP/jNpZVNzOIpRtNOlSlVgQ1hEDk/Oz:d5T5M+bOedCjNTVN3phOlKh0Dke

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16b74bd27a9b885afb323bc7b900aeea_JaffaCakes118

Files

16b74bd27a9b885afb323bc7b900aeea_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ba55f03ea8c4b40cc2a7d37a76f35e79

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

RealGetWindowClassA
SetCapture
ValidateRect
ExcludeUpdateRgn
ValidateRgn
ReleaseCapture
GetCapture
InvalidateRgn
GetUpdateRgn

kernel32

GetNextVDMCommand
SystemTimeToFileTime
LocalFileTimeToFileTime
FindClose
CompareStringA
SetEnvironmentVariableW
SetThreadPriority
SetCurrentDirectoryW
SetErrorMode
GetLocalTime
GetShortPathNameW
GetStringTypeW
FileTimeToLocalFileTime
EnumResourceNamesW
FindNextFileW
FreeLibrary
RegisterWaitForSingleObject
FindFirstFileW
LoadResource
FileTimeToSystemTime
FindResourceW
SearchPathW

Sections

.text
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 58KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imul
Size: 1024B - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ