3c24da2916734b66b942733a79ec6ff0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3c24da2916734b66b942733a79ec6ff0_JaffaCakes118
Size

76KB
MD5

3c24da2916734b66b942733a79ec6ff0
SHA1

d07f4614b6530556ead620afc2ae16cf4b20d082
SHA256

5973df98daaaa1cf00dd74fe3c17b5aeb4cb33ad4d5eb9f42e484bbd29fd6939
SHA512

50f4ce4fb265b37f4456a53b6ab2a9cb6a282b31a27162c4b268b43d8d4d038562d4a28302821716bcb31bbe02ad3077e87027fe634eed32803c8a3f46d4647f
SSDEEP

1536:U/Dr1295G38EEJJnydwB99MGLtGWhSXRUaBM+xIQ:UV8OKJnnB9uGLtLeRUoeQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3c24da2916734b66b942733a79ec6ff0_JaffaCakes118

Files

3c24da2916734b66b942733a79ec6ff0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e18bcac9036c2c04167a2c43b92a6103

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsBadCodePtr
LoadLibraryExA
GetConsoleCP
lstrlenA
ResumeThread
GetSystemTime
GetACP
GlobalLock
GetModuleHandleA
FreeEnvironmentStringsA
CloseHandle
GlobalUnlock
GetStdHandle
IsBadReadPtr
CreateEventA
OpenMutexA
VirtualAlloc
LocalFree
GetLastError
FindClose

user32

GetSubMenu
DialogBoxParamA
GetDlgItemTextA
SetFocus
GetMessageA
IsIconic
EndDialog
IsMenu
ClipCursor
CreateWindowExA
CheckMenuItem
RedrawWindow
GetMessageA
DrawIconEx

wldap32

ldap_delete
ldap_unbind
ldap_compare
cldap_open
ldap_add

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ