e2f20f315bd1a5a109aafc912eb88973_JaffaCakes118 | Triage

Sharing

General

Target

e2f20f315bd1a5a109aafc912eb88973_JaffaCakes118
Size

109KB
MD5

e2f20f315bd1a5a109aafc912eb88973
SHA1

1d404fc0ff6d0d5a7713afd89d89e55e6533f3d6
SHA256

d948a091e4bc9050384e37380599f4e33985955d4e7125057e1985affe76e294
SHA512

4b1d33813b65cc1c508e25f7339ffeaafb42de9752557180589f22b28a36e2a587c69e980ea4347b8adc5c79dfbe447d51006a77b7826688094716d2539762dc
SSDEEP

1536:t5d6oOCDTvyQkb/ytxK1RxEDYnW3IeVuE+fvQb0OHdwUgoOQ5tK+DYOQBk:Z6PqqbqC1Rxd1SuE4O9wUKC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e2f20f315bd1a5a109aafc912eb88973_JaffaCakes118

Files

e2f20f315bd1a5a109aafc912eb88973_JaffaCakes118
.exe windows:5 windows x86 arch:x86

53267f174e0725e073d38d6f59f7b842

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetEnvironmentVariableW
SetFileAttributesW
GetFileTime
LocalSize
GetDriveTypeA
GetModuleHandleA
WaitForSingleObject
CloseHandle
Sleep
MapViewOfFile
GetCommandLineW
EnterCriticalSection
GetFileType
SetLastError
HeapFree
GetCommandLineA
GetCurrentDirectoryW
IsBadReadPtr
GetFileAttributesA
HeapCreate
ReadFile
SetLastError
ExitProcess
GlobalLock
SuspendThread

uxtheme

GetWindowTheme
GetThemeColor
GetThemeBool
IsThemeActive
DrawThemeBackground
SetWindowTheme
GetThemeTextExtent
CloseThemeData
GetThemeEnumValue
GetThemeTextMetrics
CloseThemeData
OpenThemeData
DrawThemeEdge

dbnmpntw

ConnectionVer
ConnectionVer
ConnectionVer
ConnectionVer

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE