fb76a4bd5fcf5a06739fbc4ca51d1778_JaffaCakes118 | Triage

Sharing

General

Target

fb76a4bd5fcf5a06739fbc4ca51d1778_JaffaCakes118
Size

12KB
MD5

fb76a4bd5fcf5a06739fbc4ca51d1778
SHA1

7f90816c9f1c20329491e655da22efedfa42e51d
SHA256

409d3024e0bc7dec53c39aef7857765a140447d5905d14aee2b78c9c263e4e5d
SHA512

8ad65464b1ec4925e562afe99eb7edb75ecfca636ef3dfc591d06ef06168db52078cf3b04c3186a8a7f90bfb793cbbff7c02ff0d30614951215ecb9ca3cecd2e
SSDEEP

192:3xfdkFnpGOmWfxrcZP6omQLKEQycxsVmkEv8KIDKVmX:3Vdk9pGOmyxrAPaQ8YVmkEvr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fb76a4bd5fcf5a06739fbc4ca51d1778_JaffaCakes118

Files

fb76a4bd5fcf5a06739fbc4ca51d1778_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f412b333b4f7481f9f9000397f5c9f99

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LockResource
SizeofResource
CreateFileA
WriteFile
DeleteFileA
FreeLibrary
GetModuleHandleA
CloseHandle
LoadLibraryA
GetProcAddress
LoadResource
FindResourceA
ExitProcess

user32

SetDlgItemInt
MessageBoxA
EnableWindow
wsprintfA
SetTimer
SetDlgItemTextA
KillTimer
GetDlgItem
SetWindowPos
PostMessageA
GetClassInfoExA
UnregisterClassA
SetFocus
EndDialog
SendDlgItemMessageA
GetDlgItemInt
SetWindowLongA
RegisterClassExA
LoadIconA
DialogBoxParamA
SetWindowTextA

gdi32

CreateSolidBrush
DeleteObject
SetBkColor
SetTextColor

shell32

ShellExecuteExA

comctl32

InitCommonControlsEx

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ