09197ccc299cf2bf5ca8fbbd0eead8f0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

09197ccc299cf2bf5ca8fbbd0eead8f0_JaffaCakes118
Size

117KB
MD5

09197ccc299cf2bf5ca8fbbd0eead8f0
SHA1

fb03ab74a40715c1a41464f52b8655ef81b00463
SHA256

1f9b23bdb6446dfff464e7c87018589bdaef2b212dc72dc320aa5637fd5b8179
SHA512

a78fc4e11c328f24e429351ac30544df8099b21a221562139cfe2541bdb1033a05423fcfc75e128de782d5a8b66c9a08db0581f33b8f606f580b82af8b301930
SSDEEP

1536:LlbnRxxgHqZ6FWMQ9v17KV+eVUDoFnzqLwAz8OzcvpqfMPlcDmORXQhx41I1HxyX:L1hgHc6fO7MV1zqLwAz8OwdcDeRD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
09197ccc299cf2bf5ca8fbbd0eead8f0_JaffaCakes118

Files

09197ccc299cf2bf5ca8fbbd0eead8f0_JaffaCakes118
.exe windows:5 windows x86 arch:x86

8d6c7fc4da120e3e4be0da728ebdb7ea

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsDlgButtonChecked
DestroyIcon
MessageBoxExA
CreateIconFromResource
GetDlgCtrlID
CharLowerW
GetIconInfo
FindWindowA
KillTimer
SetMenuItemInfoW
SetDlgItemTextW
GetKeyNameTextW
DrawTextExW

kernel32

GetSystemDefaultLangID
MoveFileA
CreateRemoteThread
lstrcmpiW
ReadFile
CreateNamedPipeW

shlwapi

StrTrimW

gdi32

GetDIBColorTable
RectInRegion
GetCurrentObject
CreateRoundRectRgn
Polyline
CreatePolygonRgn

Exports

Exports

?KZKfikel_ojT_D@@YGXK@Z
?NKZOBJ__UwmvvoBW_F_NS@@YGXPAI@Z
?FUGK_l___k_ugpzh@@YGXDE@Z

Sections

.text
Size: 43KB - Virtual size: 167KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idat
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pacdat
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ