f65818ab11c6302e9c4cce35aa1fc366_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f65818ab11c6302e9c4cce35aa1fc366_JaffaCakes118
Size

47KB
MD5

f65818ab11c6302e9c4cce35aa1fc366
SHA1

5b942baa04db52deffa808bebc185b4da2122c95
SHA256

a2a6f7646dbf352be821a5cf6b5d5b766352820c42185b8ded0c4953c0eaa64a
SHA512

45e51a5cb0968118bf49be4a27e0f6bcb5afdaba4e28db08c364c7f53a66cb4bf03ad53045797e1d7d494da84966c145d82a4e767e5d855be974fc62b93f1ac1
SSDEEP

768:LOrRQwZbqY4LEQmE1UBrCTyqJNuFnEsfZu+xVGK5j5PzKoi1TQANs2La1dQojK+:qrfZbqkQTUBrcyqJNEnEQZLRbWpQANsh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f65818ab11c6302e9c4cce35aa1fc366_JaffaCakes118

Files

f65818ab11c6302e9c4cce35aa1fc366_JaffaCakes118
.exe windows:4 windows x86 arch:x86

330b1a8e479dc178a783f50a882a1568

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA
ChangeMenuW
CallMsgFilterW
CreateMenu

gdi32

GetDeviceCaps
FloodFill
PathToRegion
PtInRegion
GdiStartDocEMF
RectInRegion
PolyPatBlt
GetTextColor
GetPixelFormat

shell32

SHEmptyRecycleBinA
SHLoadNonloadedIconOverlayIdentifiers
SHFileOperation
Control_RunDLLW
SHFileOperation
SHGetDesktopFolder
RealShellExecuteExW

Sections

.text
Size: 21KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE