175ae8cabf89f6c4f6b008f168cb0710_JaffaCakes118 | Triage

Sharing

General

Target

175ae8cabf89f6c4f6b008f168cb0710_JaffaCakes118
Size

305KB
MD5

175ae8cabf89f6c4f6b008f168cb0710
SHA1

a244ec06516b9a92c6a7453c9f7e1de9288919de
SHA256

95216b3fc5d79652853dc654f4d6e6348b9fbf7201ef1093fe1b51cc333cd43c
SHA512

f0c3992431a5368570f994ea0fc6c22a6da1e418e196a0dd4a5e9286e09c6126c58a9bf0f6d45471c7bd56a1563b263bb3da3a1e469e086aee2807f436b0cc59
SSDEEP

6144:+vZiJn+wlQlGkfjU01Dn+ywbrRY71CvLuX5J65b0tJG4lddwtHRk:FJjVkfjhUFY78vLuXv65b0i4XdwM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
175ae8cabf89f6c4f6b008f168cb0710_JaffaCakes118

Files

175ae8cabf89f6c4f6b008f168cb0710_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d018127376cb495bdb4f4c5dd92919db

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindClose
GetModuleHandleA
SuspendThread
GetTickCount
GetProfileIntW
ResetEvent
CreateMutexW
HeapDestroy
GetCalendarInfoA
Sleep
ExitProcess
ReleaseMutex
CreateFileA
GetTickCount
InitializeCriticalSection
GetEnvironmentVariableA
GetFileSize
DeleteFileA
GetStartupInfoW
WaitForSingleObject
SetLastError
HeapCreate
GetCurrentDirectoryA
CloseHandle
HeapSize

user32

GetDC
PeekMessageA
MessageBoxA
GetSysColor
GetCursorPos
GetWindowLongA
GetDC
DispatchMessageW
GetClassInfoA
DispatchMessageW
GetDC
CallWindowProcW
GetDC

dmintf

DllGetClassObject
DllGetClassObject
DllGetClassObject
DllGetClassObject

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 298KB - Virtual size: 298KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ