293035f2d722aa3552977ab62989cdfa_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

293035f2d722aa3552977ab62989cdfa_JaffaCakes118
Size

39KB
MD5

293035f2d722aa3552977ab62989cdfa
SHA1

3874a54d559b187f1900ca09d2f9f74a3d99d561
SHA256

a80ca1bdb26c8fd2cbba15c5733d5df5f068f42e07f22249d5aeb62db7d76122
SHA512

7f851d2aae1d7a4046c0a4729f00630dfbcb330e5a8145b9ddcfdfd9741693478c838727a833f68db1487a99d924896302c6c8cf3be46294c4dc8894f95d8345
SSDEEP

768:KiRWSaQZqlJTHMxe8OkpcDxBJghUiJkB16BI6+44tpuKa1NeQxp36i:KRJjMxmkpkxB2aiJIcBI6+44vmqi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
293035f2d722aa3552977ab62989cdfa_JaffaCakes118

Files

293035f2d722aa3552977ab62989cdfa_JaffaCakes118
.exe windows:4 windows x86 arch:x86

34a796447f78ae1a2d429054f07aa302

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ResumeThread
FindAtomW
GetCurrentProcessId
SetEvent
EnterCriticalSection
FindClose
GetPrivateProfileStringW
HeapCreate
GetNumberFormatW
GetDriveTypeW
GetModuleHandleA
LocalFree
lstrlenW
ReadFile
GetConsoleAliasW
GetModuleFileNameA
GetCurrentThreadId
SetLastError
TlsGetValue
EnumCalendarInfoW

user32

CallWindowProcW
GetCursorInfo
DispatchMessageA
GetClassInfoA
DrawTextA
GetClientRect
IsWindow
GetSysColor
SetFocus
DispatchMessageA
GetMenuInfo
GetKeyState
GetKeyboardType

wsnmp32

SnmpGetTimeout
SnmpGetTimeout
SnmpGetTimeout
SnmpGetTimeout
SnmpGetTimeout

msasn1

ASN1BERDecBool

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 295KB - Virtual size: 294KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ