0f5a7e48eabc1a310444e4d104347708_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0f5a7e48eabc1a310444e4d104347708_JaffaCakes118
Size

119KB
MD5

0f5a7e48eabc1a310444e4d104347708
SHA1

95b66b85c9d0332090c3cebbf857045d83e1fa55
SHA256

dd575ecc77dbadd1be0f6e47179872d0ec42cb2b6ed4e7652dde28b8fa4e5533
SHA512

dba75302c39811d9f96c439d9ebe852377d7bba1586993975e2fb7973340a0ac9be9d69d66b2cbad0f850a9f1079425c1ae6115efe8571429042087a1e289974
SSDEEP

3072:FtMOYqZm/wsBJI7tDjHbNJyJ4KWU7Q8mLPo9z+YsWtKrxu:LXY20wP7tDj7MFQ8uo9KFW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0f5a7e48eabc1a310444e4d104347708_JaffaCakes118

Files

0f5a7e48eabc1a310444e4d104347708_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a9c8c7e02aef6c11cc361fd3371f90f7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_DrawEx
ImageList_GetImageRect
ImageList_SetFilter
InitializeFlatSB
DrawStatusTextW
DllInstall

gdi32

CreateFontA
EndPage
ExtEscape
Chord

Sections

.text
Size: 73KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE