270ab0192947f1280f204280314e6a50_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

270ab0192947f1280f204280314e6a50_JaffaCakes118
Size

34KB
MD5

270ab0192947f1280f204280314e6a50
SHA1

77b33cdc6c424b91a1b68c277d8bd03ac9c3c353
SHA256

4ff4a41a0daf483834677c3d6b14b027ef3ee23ecbb570bcd2fe0ef1efb83e17
SHA512

cd3be256e10ff075fabed981a0a0ef11e947fd32a4b3896c4dc78d0ee210d4a1bf19f0436e7cc3b92e4f3600a4c6b4a295d6dfff7e5e790558e6bbde7d0d7b43
SSDEEP

768:OxNGw+kpGMf7QevBLbOFYmLOv6ZXSX/7uA5:OxNGw+kpG87jLbOFYmLk+oT/5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
270ab0192947f1280f204280314e6a50_JaffaCakes118

Files

270ab0192947f1280f204280314e6a50_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1d0e22050bd5d9bb8fe615757289537b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DialogBoxParamA
SendMessageA
PostQuitMessage
EndDialog
GetClientRect
DefWindowProcA
CreateWindowExA
ShowWindow
UpdateWindow
LoadIconA
LoadCursorA
RegisterClassExA
LoadStringA
LoadAcceleratorsA
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA

kernel32

CloseHandle
GetCurrentDirectoryA
CreateFileA
ReadFile
GetStartupInfoA
GetModuleHandleA
LoadLibraryA
GetLastError
LoadLibraryW

shlwapi

PathFindExtensionA
PathFindFileNameA
PathCompactPathExA
PathIsDirectoryA
PathMatchSpecA
PathFileExistsA

crtdll

__GetMainArgs
_local_unwind2
_global_unwind2
_fmode_dll
_commode_dll
_exit
_initterm
_acmdln_dll
exit
_XcptFilter

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ