08ce06880cbe442e3917b413f382fd29_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

08ce06880cbe442e3917b413f382fd29_JaffaCakes118
Size

179KB
MD5

08ce06880cbe442e3917b413f382fd29
SHA1

835004906a347fe6a7b6cb1e46acd8869a6c0f89
SHA256

b77c80719524c2deeaff7a299ca8c7b3829e34ae8218243c26d140f74376c134
SHA512

f59d7d724038b62489f739d961c3c255e6dd4240dc7fbb8c920ddd8868c5e23e3b3d0bd48ac85c2f4ec1d15f9e659270ae98f3aadd1d433c1ea5438a48bbb6eb
SSDEEP

3072:/izI113cbC0bHvNtBW0O8HTdcuOcPOgG25CWkwcgpq7Jpfa3iEK01OStNvBtEEYc:KzIXSNqeTdVtGgG2+gkm7hHnvoEYqa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
08ce06880cbe442e3917b413f382fd29_JaffaCakes118

Files

08ce06880cbe442e3917b413f382fd29_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d8ba128d5381ed7c00283e599c6fa574

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

Shell_NotifyIconA
Shell_NotifyIconW

ole32

CoFreeUnusedLibraries
CoTaskMemFree
CLSIDFromString
CoGetObjectContext
CoRevokeClassObject
OleCreateStaticFromData
ReleaseStgMedium
CoRegisterClassObject
CLSIDFromProgID
CoGetContextToken

user32

IsZoomed
IsWindowVisible
GetSysColorBrush
GetMenu
IsMenu
KillTimer

kernel32

RaiseException
LoadLibraryA
VirtualAlloc
LockResource
VirtualAllocEx
ExitProcess
lstrlenA

Exports

Exports

dAgr8
gFRWSdmVXr8i@12
_kwpHJ

Sections

CODE
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 813B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.htdata
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ