f3069a3f014ceb3dde36ac6d12f07964_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f3069a3f014ceb3dde36ac6d12f07964_JaffaCakes118
Size

104KB
MD5

f3069a3f014ceb3dde36ac6d12f07964
SHA1

ce7f4bcda4799fc0afef43be1752f60a7d84468d
SHA256

94e5f1ccf7319db4ffeb3e4275f79fbfd74b4afd6305dd2d104580e4c71a1995
SHA512

04d6e4eec8de73295f4bfb1aa6276aef58e2bf74f3132a517931580d5fbe0f58f2ccf7cac01baf21d565407acec0290d2958141aa1ca37c4434b2eb5016f6b92
SSDEEP

1536:4l1Gp2aT7W1uDFX6JUndq4S1KlvUY5TJqlmoQtc9YX2xvbVqSZQp4y:4lYpNPDp6m7S1KqCq8qYGZbVqSZCX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f3069a3f014ceb3dde36ac6d12f07964_JaffaCakes118

Files

f3069a3f014ceb3dde36ac6d12f07964_JaffaCakes118
.exe windows:5 windows x86 arch:x86

7e496f0945c4ef278cffccd5c8a6a058

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

Z:\Esnncwxt\awbZWxHrD\dkcfMkl\miTeDWUYeq.pcn

Imports

gdi32

RemoveFontResourceW
SetViewportOrgEx
EndPage
RoundRect
WidenPath
CreateRoundRectRgn
OffsetViewportOrgEx
ScaleWindowExtEx

user32

VkKeyScanW
GetScrollRange
GetTopWindow
TranslateMessage
IsCharAlphaW
InSendMessageEx
DestroyMenu
LoadStringA
GetMessageExtraInfo
GetFocus
GetMenuState
DialogBoxParamA
GetKeyboardLayout

kernel32

CreateFileW
LocalAlloc
SetStdHandle
ConnectNamedPipe
GetCPInfo
lstrcpynA
ReleaseMutex
AreFileApisANSI
LocalFree
RtlUnwind
SetThreadLocale
WaitForSingleObjectEx

Exports

Exports

IpdDbqWaxsnrfecsfxxtk
Tpsiomc
VkzGjynpblbyqR
?Ltrixwjwunzdpsjviucp@@YGPAMPAD@Z
BbkhoJll

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ