2a086e4ef608ce8efb3104beb8cc0eff_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2a086e4ef608ce8efb3104beb8cc0eff_JaffaCakes118
Size

46KB
MD5

2a086e4ef608ce8efb3104beb8cc0eff
SHA1

a980c3f9e88344af66b74d1f73795804f9976835
SHA256

9aa17be0cf7d7db1f7b82a0d8c33e7b385c8c84891e38d5c143f528e9e502db7
SHA512

86f9a9c80f61f7a9ea0a89813a94433ac7ab5773d748ce0fa91d30b0c6d728e547629c116e6dc6393a30fe44de43d7a0c618cccef3a33af7e7a070e6b911fcbc
SSDEEP

768:0oEu1qKHH52Q7oSiGoP8uMt3DReozjsO46FOjZ16QJ+x6+zEui:0DPuH52HvLJ2TReQQO1oR+xHz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2a086e4ef608ce8efb3104beb8cc0eff_JaffaCakes118

Files

2a086e4ef608ce8efb3104beb8cc0eff_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8f9779ecc29e9d194b474c6a1ebbd010

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
ExitProcess
GetACP
GetCommandLineA
GetLocalTime
GetModuleHandleA
GetOEMCP
GetStartupInfoA
GetTimeFormatA
RtlUnwind
SetUnhandledExceptionFilter
UnmapViewOfFile
lstrcmpiA

user32

ShowCaret
LoadIconA
LoadBitmapA
DrawStateA
CreateMDIWindowA
CharToOemBuffA
CharToOemA
DrawTextA

advapi32

LsaCreateTrustedDomainEx
LsaGetRemoteUserName

msvbvm60

__vbaCheckTypeVar
__vbaAryUnlock
__vbaFileSeek
__vbaCyAdd
__vbaError
__vbaEnd
__vbaCyMul

dinput

DirectInputCreateA
DirectInputCreateEx

Exports

Exports

Swa
Wacommce

Sections

.text
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ