e7fd1ded2967ed1515a270ffcfc513c5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e7fd1ded2967ed1515a270ffcfc513c5_JaffaCakes118
Size

120KB
MD5

e7fd1ded2967ed1515a270ffcfc513c5
SHA1

4ad09ea5c349fa6b5cea7bad333fd824d7586b3a
SHA256

1f2ac744bb322a6bf7bd30309c25ecd3f989bf95324da0bbec3808843161d573
SHA512

857f51cd61e97e605ddf6df674a31025d6fae6ad27c3cb7b151ca19e744805c00dbcd00ada9210a43acb8b5e0a22706c8b6b60c6bb022aa395dead3cc580ab20
SSDEEP

3072:XvtnpwiI06OPntLCgcKclUe8JYsSICr3VgM:fxp40fCg9krFg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e7fd1ded2967ed1515a270ffcfc513c5_JaffaCakes118

Files

e7fd1ded2967ed1515a270ffcfc513c5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

cd1fd750a2053bd31950039dd75c2e8b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetPixel
CreateFontIndirectA
GetTextColor
GetBkColor
GetBkMode
CreateBitmap

kernel32

GetModuleFileNameA
VirtualAllocEx
GetOEMCP
LoadLibraryA
GetModuleHandleA

user32

GetDesktopWindow
DefFrameProcA
CreatePopupMenu
GetCapture
GetMenu

shlwapi

SHQueryInfoKeyA
SHDeleteKeyA
SHSetValueA
SHEnumValueA
SHGetValueA

Exports

Exports

G9MCsRo4g
y_tVbpv@4
oF7NLkJ@20
6wid74ZMUh@12
sFGpfCY@4
MvimOSy
Z13a6od_

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 105KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ