2eef1d6bd0ca8b521489d049ccff06cc_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2eef1d6bd0ca8b521489d049ccff06cc_JaffaCakes118
Size

411KB
MD5

2eef1d6bd0ca8b521489d049ccff06cc
SHA1

8f19bcadb6bc2f8cfee0e078e5bf16dc682330d5
SHA256

ab02c8ec7ba1061dc9f9ed17fd016891e1a8ef8e3743d8662c133b3f9e559ff7
SHA512

ce66a6b77f688a812d3f7351c51dfcb79a719ba9a1ff9dc323861e2c890b19ca61883e34b59edc90938ce13fd49c3890d1d06156eda23cabd7f1cdf26971d3e7
SSDEEP

12288:n4EGkyVSCvqwwXDsyBXEhZOuiCkFXWWssSysj9QBJqO:nkk8DvqZDsyxEOMsXK5yrB5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2eef1d6bd0ca8b521489d049ccff06cc_JaffaCakes118

Files

2eef1d6bd0ca8b521489d049ccff06cc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a39db38825f2234cd2b890b702a3e09c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AttachConsole
GlobalFix
LZCreateFileW
SwitchToFiber
SetDllDirectoryA
WriteTapemark
DefineDosDeviceA
SetStdHandle
FlushViewOfFile
LocalFlags

user32

SetLogonNotifyWindow
BeginDeferWindowPos
SetWindowsHookExA
GetKeyboardState
GetScrollBarInfo
VkKeyScanExA
GetTopWindow
SetClassLongA
SetWindowContextHelpId
MB_GetString

Sections

.text
Size: 408KB - Virtual size: 980KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ