2e99ebe2ede55f47808ff6f1b74cf5c0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2e99ebe2ede55f47808ff6f1b74cf5c0_JaffaCakes118
Size

392KB
MD5

2e99ebe2ede55f47808ff6f1b74cf5c0
SHA1

db5fa4dc30784e3c094b8512564bc4c3c6fb6286
SHA256

f6e1383b72bf4b5148a288701ae1329444a5f19759c48f62aea2f740d87be907
SHA512

5bc375ad0bc2f535b10100230311cede3e08c96f16157be51459058dcd64d9e9fb71787b42875e85937270e0280ed21c8a1628ecb3abe09ac6495bbfaf4a1bc6
SSDEEP

6144:5GEFIYUkqkFwzgVq767LkLbv1P/AxrvNCBeq0fG5bfAYSR6VbysZk1dWyRr3djCF:53FoCJibvNYJbxYYgbRke6DNCir6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e99ebe2ede55f47808ff6f1b74cf5c0_JaffaCakes118

Files

2e99ebe2ede55f47808ff6f1b74cf5c0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f03f65f8c8c27073f1ee82b80cf56829

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindClose
SetLastError
FreeEnvironmentStringsA
UnmapViewOfFile
GetACP
CreateMutexA
SetVolumeMountPointA
FreeConsole
ExitProcess
GetModuleHandleA
LoadLibraryExA
HeapDestroy
HeapCreate
LocalUnlock
FindResourceA
GlobalFree
GetLastError
Sleep
CreateFileA
TlsGetValue

user32

IsWindow
GetIconInfo
DrawEdge
GetDlgItem
FillRect
GetFocus
CheckRadioButton
CopyRect
GetDC
DefWindowProcW
CallWindowProcA
DispatchMessageA
DrawMenuBar

uxtheme

GetThemeSysInt
DrawThemeText
DrawThemeEdge
DrawThemeIcon
GetThemeRect

clbcatq

SetupOpen

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ