f7e377eb2260e88d615fe276d8ca68de_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f7e377eb2260e88d615fe276d8ca68de_JaffaCakes118
Size

212KB
MD5

f7e377eb2260e88d615fe276d8ca68de
SHA1

dd3ffa295e9f6b3c2758f91111b66ecd62b46c21
SHA256

c25244f615efb393891bf851a3f4ec9680b35da180f381cf8b239737dccbb7b6
SHA512

058661f850123d00ca27d102ac2c6242cdc440af6c69e85a37af569d86475dbf51fdc1a0b00ad170d7a2b96b407d125a6c5f7e13956d904fac26819aafdea240
SSDEEP

3072:sfWwmdVXGSXzpyKg74e4xnryRAg5xB82ed+ehNHnxtvBJ+KVv0WiWtOGyO9W9:IS7Dfex4xnrTX2e37HnxjTv0nWtOhO6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f7e377eb2260e88d615fe276d8ca68de_JaffaCakes118

Files

f7e377eb2260e88d615fe276d8ca68de_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ae000008ecbbecf970e7773db7faa727

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringW
GetConsoleMode
GetCurrentProcessId
GetCurrentThreadId
GetFileSize
GetLocaleInfoW
GetStartupInfoW
GetStringTypeW
GetThreadLocale
GlobalReAlloc
IsDBCSLeadByte
LoadLibraryExW
RtlUnwind
SetFileAttributesW
lstrcmpiW

gdi32

CloseEnhMetaFile
CopyMetaFileA
CreateBrushIndirect
CreateICA
EndDoc
ExtSelectClipRgn
ScaleWindowExtEx
SetBkMode
SetDIBitsToDevice
SetTextAlign
SetWinMetaFileBits
StartPage

user32

BeginPaint
CreatePopupMenu
EnumWindows
GetClassInfoA
GetMessagePos
GetScrollPos
GetWindowDC
InsertMenuItemA
IsWindowVisible
MessageBoxA
RegisterWindowMessageA
SetClipboardData
SetFocus
SetForegroundWindow
SetWindowsHookExA
UnhookWindowsHookEx
wsprintfA

Sections

.text
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

gKYjEX2f
Size: 512B - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE