0f2d7fee00e3988908082f1aaa05a2a8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0f2d7fee00e3988908082f1aaa05a2a8_JaffaCakes118
Size

807KB
MD5

0f2d7fee00e3988908082f1aaa05a2a8
SHA1

497442563d28d2fa45c30a016a67d5a94da14f2a
SHA256

c5e87a20a0112d3f60b499ca146897e3ce5a13d209fb5a3166209f80c0a65386
SHA512

3cedc8df12a80132c4f05548ac254298ccc133a36f1da3e8afa52a18448710bc5637d6afb24fe2084b447491af1363b39ea6e7506d1608c067087ab8693d36f2
SSDEEP

24576:GY8LOanf5117t2Ac82ekC8LmBHaVSA3UhdmJ/5ExMqf:GY8ianfb1J2Ac82e5EVSAAgQMQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0f2d7fee00e3988908082f1aaa05a2a8_JaffaCakes118

Files

0f2d7fee00e3988908082f1aaa05a2a8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8aa6af70c5038b28a8c4493bb09a223c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

GetSubMenu

gdi32

SelectPalette

winspool.drv

OpenPrinterW

comdlg32

ChooseColorW

advapi32

ReportEventA

shell32

DragQueryPoint

ole32

OleGetClipboard

oleaut32

VariantClear

oleacc

LresultFromObject

comctl32

ImageList_ReplaceIcon

version

GetFileVersionInfoW

wininet

InternetCloseHandle

Sections

.text
Size: 792KB - Virtual size: 3.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE