2b882afb9aac5f625e6659bdae1ad2a6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2b882afb9aac5f625e6659bdae1ad2a6_JaffaCakes118
Size

1.0MB
MD5

2b882afb9aac5f625e6659bdae1ad2a6
SHA1

3b0208851c5f13399f01f63d14b1c3bb981a57ab
SHA256

aac3e1f06aa3fc4e0382c82c23747727e83cf0f7ae3b07e33f5142d7514c46be
SHA512

375b870c785eb9290c077a10057f58f8a0650aab9e18fe830a0f6f3a3bb151cca8eb1b65a80a36d7301bdd1a76ba41002e948939135d4d755b0cef8437d917e2
SSDEEP

12288:3Ec9HRbbHwN5l7Qkat3u/QDXedqHQ4sk/6XoTLLtZf3FHkpy8YxqEHnKc4KK9DRT:3xDbdvq+6a2XG9x8UdHnSLDqfTw1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b882afb9aac5f625e6659bdae1ad2a6_JaffaCakes118

Files

2b882afb9aac5f625e6659bdae1ad2a6_JaffaCakes118
.exe windows:1 windows x86 arch:x86

f37dae3e8c09b2511467d9c79f83a0ed

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_NO_BIND
IMAGE_DLLCHARACTERISTICS_WDM_DRIVER
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FormatMessageA
EnumCalendarInfoExA
VerLanguageNameW
GetPrivateProfileSectionA
GetStringTypeA
SetLocaleInfoA

user32

GetAltTabInfoA
MapVirtualKeyA
GetAltTabInfoA
IMPSetIMEA
SystemParametersInfoW
DefWindowProcW

gdi32

GetTextExtentPointA
GetCharABCWidthsA
GetTextExtentPointA

Sections

.��
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.code
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 806B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fasm
Size: 1024B - Virtual size: 549B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ