JaffaCakes118_6b2c95b46237245d77defb897f25c9d0 | Triage

Sharing

General

Target

JaffaCakes118_6b2c95b46237245d77defb897f25c9d0
Size

116KB
MD5

6b2c95b46237245d77defb897f25c9d0
SHA1

a93c9f15863f7bfecb4bc830f5a3f3d86f2c3c35
SHA256

22f222970081573a988795a2830f076bc37aca8a5c9953254d179140e8a71323
SHA512

8518da75c269b42df1b8e5c8f0073de093deec13fa9a2918fffda8c05009c118c7afcc547000bcd8634a9f33af62f9077de5eb9b1a20a961a1f8bd92cdc70680
SSDEEP

3072:GaxGmCKYy6sRMMJaSt6LCeXvQVnoejc2Fu0:GyYuJZMLCeXInoe42FN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_6b2c95b46237245d77defb897f25c9d0

Files

JaffaCakes118_6b2c95b46237245d77defb897f25c9d0
.exe windows:4 windows x86 arch:x86

3d153b9af3b6698c498837a61857eef5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

IsBadCodePtr
lstrlenW
GetModuleHandleA
GetCurrentDirectoryA
GetStartupInfoA
FindResourceA
ReadFile
GetFileTime
IsBadStringPtrA
WriteConsoleW
HeapCreate
ReleaseMutex
GetFileAttributesA
WriteConsoleW
CloseHandle
GetFileSize
SetPriorityClass
IsValidLocale
WriteConsoleW
GetLastError
lstrcpyW

msftedit

SetCustomTextOutHandlerEx
RichComboBoxWndProc
RichEditWndProc
RichListBoxWndProc

shell32

ShellMessageBoxA
DuplicateIcon
StrChrA
SHGetMalloc
DragAcceptFiles
ShellAboutA
SHGetSettings
ShellMessageBoxA
ExtractIconA
DragQueryFileA
ShellAboutA
SHGetMalloc
SHGetFileInfoA

msasn1

ASN1BERDecEoid

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 1024B - Virtual size: 67B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ