e9d7cca6e330454d3a30634089ed3cde_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e9d7cca6e330454d3a30634089ed3cde_JaffaCakes118
Size

49KB
MD5

e9d7cca6e330454d3a30634089ed3cde
SHA1

a44879223cfbc6e350039825202379fb43eeab90
SHA256

f60c6c451a1761edd800e3f79984d0b4bd9fa2f49466b4e0d6621d0a5927d2c5
SHA512

c137270286a0c429024101030833079ae90514cfc373bd64409b863f3731e93080ebe78e0311a521409afeae8e3394a5c9c5ffc663e52a65cc17cf0e0ea64b89
SSDEEP

768:83G03LLj5RpA/MEOpvH0QszXSbHFcleF6V3/hTRLo/FZW5ohkkZaGdKNaO6Qi0:kbTpA0E+vUQsu7Fc86V3SiWVaGyDi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e9d7cca6e330454d3a30634089ed3cde_JaffaCakes118

Files

e9d7cca6e330454d3a30634089ed3cde_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2969c2dadd4809ebc1e3577d4237d22d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateDirectoryExW
CreateSemaphoreA
ExitProcess
GetCommModemStatus
GetLocaleInfoW
HeapSize
OpenProcess
SetConsoleTextAttribute
SetCriticalSectionSpinCount
UpdateResourceW

user32

BeginPaint
CharUpperBuffA
CreateIconFromResourceEx
DrawCaptionTempW
InvalidateRect

gdi32

CreateFontA
DeleteColorSpace
GetBitmapBits
GetDIBColorTable
GetGraphicsMode
PolyTextOutW
SelectObject
SetDeviceGammaRamp
SetPaletteEntries
SetTextAlign

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE