1732032cbb030e0af54ae1279219d87c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1732032cbb030e0af54ae1279219d87c_JaffaCakes118
Size

305KB
MD5

1732032cbb030e0af54ae1279219d87c
SHA1

6441a58ff11ec8cce5a0e8b34033215e8cb092d3
SHA256

c46a9fed7e9c430f117c20b1e6a71e85679f34154dc89843a9f6897bc2d441cb
SHA512

69ad9d0a1d9f60591b77d3c2214ea23fdf9fc3a52013d35887372bfc1c76bcab9a76181fa00d01d1f1bd22b5fad43c6510f5dc698b49c1ebed04968da1548664
SSDEEP

6144:jlFVAXZU/p3PJpJ7X1X9YA1iR1oeDjtvKchYXtb9IE:He4pfJ/7X1ER7jtFha9h

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1732032cbb030e0af54ae1279219d87c_JaffaCakes118

Files

1732032cbb030e0af54ae1279219d87c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

babad28bacad8402b0cbfdbacc82730c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEvent
LocalFree
EnumCalendarInfoW
lstrlenW
GetCurrentThreadId
FindAtomW
SetLastError
GetDriveTypeW
GetNumberFormatW
ResumeThread
HeapCreate
ReadFile
GetModuleFileNameA
GetPrivateProfileStringW
GetConsoleAliasW
TlsGetValue
FindClose
EnterCriticalSection
GetCurrentProcessId
GetModuleHandleA

user32

GetSysColor
GetCursorInfo
GetKeyboardType
GetMenuInfo
GetClientRect
DispatchMessageA
SetFocus
CallWindowProcW
GetClassInfoA
DispatchMessageA
DrawTextA
IsWindow
GetKeyState

wsnmp32

SnmpGetTimeout
SnmpGetTimeout
SnmpGetTimeout
SnmpGetTimeout
SnmpGetTimeout

msasn1

ASN1BERDecBool

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 295KB - Virtual size: 294KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ