fd57bd1b52b81b5705c3f515790ae32b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fd57bd1b52b81b5705c3f515790ae32b_JaffaCakes118
Size

111KB
MD5

fd57bd1b52b81b5705c3f515790ae32b
SHA1

54af1e7191b0d2b214d654977a6390e68129cbd0
SHA256

17a6e2b99f0265ba3060602a6f55a41351b600fcd8f1449f91ac6906d5ef50ba
SHA512

0da399b4dde20a856a2239a86bfee57493ca3b7093da5ab3a9fbfec505c217d62a12fac93c99be7d462a6eaabe63bd0f8e6af0f78f672931bb859dfd792043c3
SSDEEP

3072:vQS8C8qM47CelvD5b1Ms6QpCp7675NKtK:InCvMcJ6Qpt75NK4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fd57bd1b52b81b5705c3f515790ae32b_JaffaCakes118

Files

fd57bd1b52b81b5705c3f515790ae32b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

97c1770361601ced061f0fcd8b2d5982

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

StretchBlt
SetICMMode
SetRelAbs
ResetDCW
SetDIBColorTable
UpdateColors
SaveDC
TextOutW

shell32

StrRStrIW
SHAppBarMessage

kernel32

ExitProcess
TerminateProcess

Sections

.text
Size: 24KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE