44f414023d525b456ba349271ddffb4c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

44f414023d525b456ba349271ddffb4c_JaffaCakes118
Size

25KB
MD5

44f414023d525b456ba349271ddffb4c
SHA1

d0f4f38fd4919f0f8172feeaadfc35ef348444df
SHA256

d2e37b6c1a1ca46d36e4044dd9c62507c406432a8fce2493f597d9b19aa63300
SHA512

f8ab708568caceebf1cbf3cb5ad8b445ceb3a381f15cf7b4b0ce5ec26fab8ac1679d6179ca8add677313bc2c5b82257c2ec9c4b80067b2078ef834ce435e5b91
SSDEEP

384:E55IlUrwKi2wWtxGVhF21X9nq0OFKHQkRBOW3xGPewqmQ39Cj:1MwK41sNqDwHQkRQW3sWrm3j

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
44f414023d525b456ba349271ddffb4c_JaffaCakes118

Files

44f414023d525b456ba349271ddffb4c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

887899bd2ee9958a277e0a2e03f24814

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetConsoleInputExeNameA
GetConsoleAliasExesW
DosPathToSessionPathW
FindNextVolumeA
WriteConsoleInputA
GetDiskFreeSpaceA
OpenProfileUserMapping
GetVersionExW
ConsoleMenuControl
InterlockedExchange
WriteConsoleOutputA
BackupWrite
lstrcpyn
ConsoleMenuControl

user32

MapVirtualKeyA
RemoveMenu
GetMenuCheckMarkDimensions
SetSystemMenu
KillSystemTimer
GetQueueStatus
WCSToMBEx
DrawIconEx
RealGetWindowClassA
DrawMenuBarTemp
ScrollDC
MonitorFromWindow
CreateDialogParamA
LoadMenuA

Sections

.text
Size: 22KB - Virtual size: 24KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ