JaffaCakes118_6cd82fcdca0229b7dd6f23e171ab2d2f | Triage

Sharing

General

Target

JaffaCakes118_6cd82fcdca0229b7dd6f23e171ab2d2f
Size

136KB
MD5

6cd82fcdca0229b7dd6f23e171ab2d2f
SHA1

fda02c1398cba1795882c9c6eaad010d8c77f706
SHA256

770321119b1b926dff703b06c2663f39ecb26571315f7b6dd654ab6c1ad3cafd
SHA512

256728a63f1f12d71a9a4ac314fa78528474d89c7494cf9f9c7a46b3819161a5324245773e173254282d86b24d0b84db2458632b48e2dc3f0969783e4b6fe647
SSDEEP

3072:CehYBiqGbixW0Irn0wO0i4iHW07VGqAh:CehLG60wO0iLHW05Glh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_6cd82fcdca0229b7dd6f23e171ab2d2f

Files

JaffaCakes118_6cd82fcdca0229b7dd6f23e171ab2d2f
.exe windows:5 windows x86 arch:x86

e6a6b031370c61ea33938d38f266181b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

IsValidCodePage
GetStringTypeA
FindClose
ResetEvent
GetExitCodeThread
HeapSize
GetLocaleInfoA
GetProcessHeap
GetTickCount
RemoveDirectoryA
SetLastError
FindResourceA
VirtualProtect
GetFileAttributesA
CreateDirectoryA
TlsGetValue
GetModuleHandleA
MapViewOfFile
GetDriveTypeW
GetFileAttributesA
IsBadWritePtr

user32

GetCapture
GetWindowLongW
SetFocus
SetCursor
GetWindowTextW
wsprintfW
IsDialogMessageA
PostMessageW
DispatchMessageA
LoadCursorA
LoadImageW
PeekMessageA
IsWindow

msaatext

DllUnregisterServer
DllGetClassObject
DllUnregisterServer
DllCanUnloadNow

rasapi32

DwRasUninitialize

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 127KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.import
Size: 512B - Virtual size: 468B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE