002dd436d0ac82c635940a71c750c839_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

002dd436d0ac82c635940a71c750c839_JaffaCakes118
Size

108KB
MD5

002dd436d0ac82c635940a71c750c839
SHA1

8b5b2d6cff7b49f8e9eaab33116febd2c5fb7ffa
SHA256

93b7e0aa372dbfb5b92be9237e53abb7d0e1da43390585f495959e9617b421dc
SHA512

d254c5cc8728a808bd8577b3d03b027530e4e449f4441632d5ab7264709b7ad4612cb3aaebf7abacfe89586b4d233be4d38d68a68adee892bdc2cfa877045669
SSDEEP

1536:3iScQr1BfV7oAncKFPeCpGtjXsISHIuHOvAHePPC9FURDoq4OZZZLlCIib:3fcQ1BR+KjpGtjaHIAHe+aRD68wb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
002dd436d0ac82c635940a71c750c839_JaffaCakes118

Files

002dd436d0ac82c635940a71c750c839_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5aa212658abe22747e7643aa845e1c39

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryValueExW
RegDeleteKeyA

comctl32

CreateToolbarEx
ImageList_Draw
ImageList_DragEnter
ImageList_LoadImageW
MenuHelp

gdi32

GetClipBox
GetPixel
CreateBrushIndirect
ExcludeClipRect
CreatePalette
GetCurrentPositionEx
CreateFontIndirectA

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 65B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 509B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 26KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ