0d0b9a386b313b04f40c245dcac20eea_JaffaCakes118 | Triage

Sharing

General

Target

0d0b9a386b313b04f40c245dcac20eea_JaffaCakes118
Size

285KB
MD5

0d0b9a386b313b04f40c245dcac20eea
SHA1

6db9736ec383061711c76a8e8e9e38e921635a9d
SHA256

334cf1d27dd5d20bef59f7087c0eb12ffd6e59bb45c7dfaac1bad5594e2252fa
SHA512

db6911a0ebee42a54f7e4f246aa88fc716c6b9e7d7145abf3fe1c2ddf583e97d0cab93ffad5036dd3bb1c19b6890bdff4c7b1772baa7184b6acdfeb336c6ddeb
SSDEEP

6144:9K8law/Jro6pCc13dpyJzTK3x9avm7jXJieFzvuuxaceb:9Pawq6L/pZwmPkeFzvuuMb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0d0b9a386b313b04f40c245dcac20eea_JaffaCakes118

Files

0d0b9a386b313b04f40c245dcac20eea_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5ce51a3fd219f3e4d8d3f861432f4324

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
GetVersion
lstrcpyW
lstrcatW
GetLastError
lstrcmpW
GetFileSize

gdi32

BitBlt
CreatePen
SelectObject
DeleteObject

msvcrt

_exit
toupper
exit
wcslen

user32

TranslateMessage
GetWindowTextW
GetWindowRect
ShowWindow
SetWindowTextW
MessageBoxA
GetMessageW
CreateWindowExW
SetDlgItemTextW
ScreenToClient
LoadIconW
DispatchMessageW

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 274KB - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ