45ecaf5a1ccf73fb3b13146deb4cc507_JaffaCakes118 | Triage

Sharing

General

Target

45ecaf5a1ccf73fb3b13146deb4cc507_JaffaCakes118
Size

49KB
MD5

45ecaf5a1ccf73fb3b13146deb4cc507
SHA1

55f1de38876a3c8326817e338185701eb1a673eb
SHA256

51947f1fe6e0c6d2c51e2e89697eb25bb816084f9b3540d876a0fcdbc3d55b08
SHA512

f798454431280883bda518fe56b18da164d33e87c18414253e776b74a0bbf4ae355191a7d0dc91a1af315f4745864340cc9b6097076d7bf0a99ebb2f43ad614a
SSDEEP

768:qIuMu8rfkSitJnwcmGaVTQy9USjAoo1NpBKxQ3gcWRRLuQByqDFfwz4JnC:qIi8CJw4aVTfUSjkF1QcIHQqo4JnC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
45ecaf5a1ccf73fb3b13146deb4cc507_JaffaCakes118

Files

45ecaf5a1ccf73fb3b13146deb4cc507_JaffaCakes118
.exe windows:3 windows x86 arch:x86

3db6b80130bb78a8e5d5a957cc99befc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
GetCommandLineA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetModuleFileNameA
GetModuleHandleA
GetTickCount
InitializeCriticalSection
InterlockedCompareExchange
InterlockedDecrement
LocalFree
QueryPerformanceCounter
VirtualAlloc

user32

BeginPaint
DialogBoxParamA
EndDialog
EndPaint
GetCapture
GetClientRect
GetDlgItem
GetFocus
GetKeyboardType
IsChild
IsIconic
IsWindow
PeekMessageA
PostMessageA
ReleaseDC
SetForegroundWindow
TranslateMessage

Sections

CODE
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BSS
Size: - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 890B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ