a848121c0e1bce588792a6ba93d191f4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a848121c0e1bce588792a6ba93d191f4_JaffaCakes118
Size

484KB
MD5

a848121c0e1bce588792a6ba93d191f4
SHA1

92d10f8c2fdba6dce7f5d07eca8b7dec14c29af8
SHA256

5d5fb5959fc8ce8c2f5e231f99304462b455c50a246fec6d1bcd9a9826c3c9b9
SHA512

3e46508446fd8b9fa110c01ccedade7076eef45079504705d2e18334bce3b86bcd68fda42b9ee750033e8d7e8a5f9983c05d22461ddf51939d2ecfe90c72f6e1
SSDEEP

6144:gXuCHYvS221dYjhIIBo49odMlbZzBSFj5I+bdxinGqL0+RSB5BHAr96nfZAw/KpC:qusndMlodMl1B+95KJR4gYZAwCp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a848121c0e1bce588792a6ba93d191f4_JaffaCakes118

Files

a848121c0e1bce588792a6ba93d191f4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

aee02470253e4b86a963d3d3413b27f6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetMessageA
DispatchMessageA
TranslateMessage
LoadIconA
RegisterClassExA
BeginPaint
GetWindowRect
DrawTextA
EndPaint
PostQuitMessage
LoadStringA
SetFocus
DialogBoxParamA
DefWindowProcA
DestroyWindow
EndDialog
SendMessageA
wsprintfA
CreateWindowExA
LoadBitmapW
MoveWindow
InvalidateRect
FlashWindowEx
GetWindowLongW
GetScrollInfo

kernel32

GetLastError
GetModuleHandleA
GetSystemInfo
GetStartupInfoA
lstrcatA
GetCurrentDirectoryA
GetVersionExA
CreateFileA
lstrlenA
lstrcmpA

comctl32

ord17

msvcrt

exit
_acmdln
_exit
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
_XcptFilter

Sections

.text
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 320KB - Virtual size: 320KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 129KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ