3a8a1630f7c13a8cc16afc34ff1cb3bd_JaffaCakes118 | Triage

Sharing

General

Target

3a8a1630f7c13a8cc16afc34ff1cb3bd_JaffaCakes118
Size

174KB
MD5

3a8a1630f7c13a8cc16afc34ff1cb3bd
SHA1

0b10ea1ca5fb7d1edd6358faa98de79fea66cd0d
SHA256

e8f943fa11881ae86cfd361b2c4cc18ebdeaa6c97b8d77821266ff8797da207e
SHA512

0939f98b4008039c9a45d5b630473068fc1c280b7be4649b5f705fe665ae8d771fb912a108786c76c5471713fdf667965f576cbb9e7bfba8589df2057aaffcea
SSDEEP

3072:YVqldg5DV+dc00kcg6XL2UOMvhC6Xxc0luJGLz8SSIUyv:aPVj00pXCuDXuyz8Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a8a1630f7c13a8cc16afc34ff1cb3bd_JaffaCakes118

Files

3a8a1630f7c13a8cc16afc34ff1cb3bd_JaffaCakes118
.exe windows:5 windows x86 arch:x86

ba108fc05b717ebf5322c9d0116bf8c1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CopyIcon
DrawTextW
DrawIconEx
GetScrollPos

advapi32

RegGetKeySecurity
RegEnumKeyW
RegOpenKeyA

kernel32

FindClose
GetLocalTime
lstrcmpA
GetFileTime
CreateDirectoryA
FormatMessageA
CopyFileExA
OpenFileMappingA
ExitProcess
lstrlenA
DeleteFileA
OpenFile
GetCommandLineA
WriteFile
CompareStringA
CopyFileA
GetPriorityClass
GetLastError
ExitThread
GetStdHandle
GetFileType
HeapAlloc
FlushFileBuffers

Sections

.gdba9
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.730b
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.3e1d
Size: 121KB - Virtual size: 380KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.95dab
Size: 1024B - Virtual size: 820B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ