f55ad2a7898813e03a47ea9983da9be7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f55ad2a7898813e03a47ea9983da9be7_JaffaCakes118
Size

137KB
MD5

f55ad2a7898813e03a47ea9983da9be7
SHA1

1131d75cb449bb5eac5c15bed50111fe640386f8
SHA256

32a5c990b7b3e8a74db3dc494c4a20488e5de0771306a74bcecb17d944c60466
SHA512

9aca170bdc4ba29d6c964d223961465099ad11f952324e7245714a0620ea6a44c28ae2a217f7a4a7fffb50ed83d1d8f9a88bf9aad91051dd74f43751f8b462f8
SSDEEP

3072:pCkrtwQqSoV1c1fsFLKlr7M1Uvk+t8zbHzJPKi:pH/qL4sglr7Ma/tQzJyi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f55ad2a7898813e03a47ea9983da9be7_JaffaCakes118

Files

f55ad2a7898813e03a47ea9983da9be7_JaffaCakes118
.exe windows:5 windows x86 arch:x86

7d14bf9ec42028cef2cac4fc07df34ac

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateNamedPipeA
GetProcAddress
LoadLibraryA
UpdateResourceA

user32

GetAsyncKeyState
TrackPopupMenuEx
SetPropA

gdi32

GetCurrentPositionEx
GetMetaRgn

Exports

Exports

hwrfpwhcfnshwi
plinnhawlwrmyex
zhslfddbh

Sections

.text
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ