2adedd5dacb1936533e7d3680986f8e8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2adedd5dacb1936533e7d3680986f8e8_JaffaCakes118
Size

745KB
MD5

2adedd5dacb1936533e7d3680986f8e8
SHA1

bae327aa07d748946b903a1ffbe221ffa26c3239
SHA256

d2c818963c9c0a01a7f72498f626ef05e1d72d87cbf3b9c023da09291c0a3dd7
SHA512

a7fb879fc5298e2f8fd4072cc0ceadefb5348e4425c9727f1314448452b78ae542e2ef791072742020ca470fd606ac5e65dba209f7b1815e59cc265f4134bca7
SSDEEP

12288:Qw4uLYUDQc9lNxV2WcGqeMDnj0lV+lR6xjGOvkj0DMkmyZXq63rI6o5iRmjurrsb:Qw4uhDQc9ld2WpqnMkOGW4Xl6PRmj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2adedd5dacb1936533e7d3680986f8e8_JaffaCakes118

Files

2adedd5dacb1936533e7d3680986f8e8_JaffaCakes118
.exe windows:5 windows x86 arch:x86

30169dbea1849ac01b05d0bf8ebb012a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
GetModuleHandleA
IsBadReadPtr
GetFileAttributesA
GetCurrentDirectoryW
GetEnvironmentVariableW
LocalSize
GlobalLock
SetLastError
Sleep
GetDriveTypeA
EnterCriticalSection
ExitProcess
WaitForSingleObject
GetFileType
GetFileTime
SuspendThread
MapViewOfFile
ReadFile
HeapFree
HeapCreate
SetFileAttributesW
GetCommandLineW
SetLastError
GetCommandLineA

uxtheme

GetThemeEnumValue
OpenThemeData
SetWindowTheme
GetThemeBool
GetThemeTextMetrics
CloseThemeData
GetWindowTheme
GetThemeTextExtent
DrawThemeBackground
DrawThemeEdge
GetThemeColor
IsThemeActive
CloseThemeData

dbnmpntw

ConnectionVer
ConnectionVer
ConnectionVer
ConnectionVer

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 738KB - Virtual size: 738KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE