5343fbf7bc87a94672030cb37e9fea58_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5343fbf7bc87a94672030cb37e9fea58_JaffaCakes118
Size

214KB
MD5

5343fbf7bc87a94672030cb37e9fea58
SHA1

961d24494119a19d42e5af5b6242fba1fa9e84fc
SHA256

6e3cd3d0974a5912aca04fbbecfe19652674bb64dd6291ae675645ae648f0441
SHA512

418c4f22f22b6e00df294fdc1669c00a499052de892331ed57e0da0bcdc1f1eedf40db2776b890b393d2e4d31184852009b310b08665e09341d98fc62fdd9bcf
SSDEEP

3072:YNlWOsSzBA91pQi/bQjOHaHMXueurP6q3Wfd/6qoWTfPf9f1PHg87ji8XRBBF+YZ:aR7zo0i/8VHMXdVq+1Th1PAx8T/DHm3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5343fbf7bc87a94672030cb37e9fea58_JaffaCakes118

Files

5343fbf7bc87a94672030cb37e9fea58_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8cb9d5ebe37299bc023910e0ce27eb0f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetCursor
IsWindowVisible
GetSysColor
RegisterWindowMessageA
GetWindowPlacement
SetPropA
DefFrameProcA

kernel32

LoadLibraryExA
SetHandleCount
GetVersionExA
LoadLibraryA
GetModuleHandleA
GetLastError
GetProcAddress
VirtualQuery
GlobalAlloc
LocalAlloc
CompareStringA
SizeofResource
CloseHandle
WideCharToMultiByte
GetStdHandle
GetLocaleInfoA
GetFileSize
GetStringTypeW
FindFirstFileA
lstrlenA
ExitThread
CreateFileA
ExitProcess
VirtualAlloc
CreateEventA

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 141KB - Virtual size: 229KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.`data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ