5339b3a1d67c4ee9bc212446dac8c315_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5339b3a1d67c4ee9bc212446dac8c315_JaffaCakes118
Size

127KB
MD5

5339b3a1d67c4ee9bc212446dac8c315
SHA1

48a557e121ffa99e1db97da5fd6a3578925173b0
SHA256

df100314a84dc7cb94fb892e8056ab2c05e93675d6228f2f3a059ff853ec3703
SHA512

a78178afa7dd2e6a9e423a606c021207f08613a4384ff1840f0c9a9355f53b6d19b7a85904391781422726d0940685ff68d73cc5dd857e457d0d4a9bd5b0208b
SSDEEP

3072:sGBMuOT/PsJcu8cScrOSSZeCzL1pYCOtF6UJp2dXHl2GecZ94o1tG:pOT/P9criECzL11OtF/JpoX5D1U

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5339b3a1d67c4ee9bc212446dac8c315_JaffaCakes118

Files

5339b3a1d67c4ee9bc212446dac8c315_JaffaCakes118
.exe windows:1 windows x86 arch:x86

e2d0958efd2805f9eec42dbf3ba0e94b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenMutexA
GetEnvironmentVariableA
GetVersionExA
CreateFiber
ExitProcess
SetEvent
GetDateFormatW
GetShortPathNameA
HeapCreate
OpenMutexW
lstrcmpiW
GetModuleHandleW
FileTimeToSystemTime
CloseHandle
MultiByteToWideChar
GetCurrentDirectoryW
VirtualAlloc
SleepEx
OpenEventW
FreeLibrary
RemoveDirectoryA
GetAtomNameW

user32

GetActiveWindow
OpenClipboard
GetKeyState
MonitorFromRect
PostMessageA
GetClassNameA
GetSysColorBrush
ShowCaret
GetClassInfoExA
GetWindowRgn
GetScrollRange
GetMessageW
CheckRadioButton
CreateDialogIndirectParamA
InsertMenuItemA

gdi32

GetBkColor
CreateDCA
CreateFontIndirectW
CreateBrushIndirect

advapi32

RegReplaceKeyW

comdlg32

GetOpenFileNameW

Sections

.text
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 86KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ