0d928091daa77406bcc0069259c0f467_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0d928091daa77406bcc0069259c0f467_JaffaCakes118
Size

24KB
MD5

0d928091daa77406bcc0069259c0f467
SHA1

e30cd1a867bc7e974a658a1b4f89f2e677cfbbdb
SHA256

8f8b2631a0edee8c544972b6461b2d2d2667de8ac4df7d7d77f0628410ab0303
SHA512

35b3ff381c5498efe51d3d2040116beb99c14972c3a97d8ab72417c5402d8fe43ac15ca1f1b393074e407eabd4c405c57088271b3dfc952db54fa26996e36a36
SSDEEP

384:RVBJeND82fnBBwi9tPn5zFtBIgwXHmUNFsk2wekEwyxpp:zQpnBIgwXGUNFsJBw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0d928091daa77406bcc0069259c0f467_JaffaCakes118

Files

0d928091daa77406bcc0069259c0f467_JaffaCakes118
.exe windows:4 windows x86 arch:x86

16bc94300976d84edc7b77cd0650aad4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

UpdateWindow
CallWindowProcA
TranslateMessage
ShowWindow
SetWindowLongA
GetMessageA
SetMenu
SetFocus
SendMessageA
TranslateAcceleratorA
PostQuitMessage
MoveWindow
MessageBoxA
LoadMenuA
LoadIconA
LoadCursorA
LoadAcceleratorsA
GetWindowTextLengthA
GetWindowTextA
RegisterClassExA
DispatchMessageA
DestroyWindow
DefWindowProcA
DefMDIChildProcA
CreateWindowExA

kernel32

CloseHandle
GetCommandLineA
GlobalUnlock
lstrcpyA
lstrcmpiA
WriteFile
SetCurrentDirectoryA
ReadFile
CreateFileA
GlobalLock
GlobalFree
GlobalAlloc
GetModuleHandleA
GetFileSize
GetCurrentDirectoryA
ExitProcess

comdlg32

GetOpenFileNameA
GetSaveFileNameA

gdi32

CreateFontA

oleaut32

SysAllocStringByteLen
SysFreeString

comctl32

ord6

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 968B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE