1c82ffd25b1c61fda60c2501153a1b11_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1c82ffd25b1c61fda60c2501153a1b11_JaffaCakes118
Size

122KB
MD5

1c82ffd25b1c61fda60c2501153a1b11
SHA1

0ea708e725bf51a02d7f66296dd290f0e7e12ee6
SHA256

953af88348cd28e5bf562b4e653950a426907bf8eb49ad1ea894394a22e62147
SHA512

3e67d1394a6264a9dbba18866760278466647ae57adf4ccc75771e6454168cc6fab7b558594e42146bd1913c9b7c95ec31f8c4c01955415a3c788947c1d80623
SSDEEP

3072:9omjB2RL2NWtmppYYAEk2HREZ9go6nQjFt:/B2RqQmrj1Rs76Q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1c82ffd25b1c61fda60c2501153a1b11_JaffaCakes118

Files

1c82ffd25b1c61fda60c2501153a1b11_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5997b5a96df8e9cba7628b7e01fbadea

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Add
ImageList_Draw
ImageList_DragShowNolock
ImageList_GetBkColor
ImageList_DrawEx
ImageList_Remove

gdi32

GetTextColor
SelectObject
RestoreDC
GetBkColor
SetPixel
GetBkMode
LineTo
BitBlt

kernel32

lstrcpynA
lstrcpyA
VirtualAllocEx
LoadLibraryA
WriteFile

user32

DefMDIChildProcA
DefWindowProcA
GetDesktopWindow
GetMenu
GetCapture

Exports

Exports

_gR8TKggqEVb@20
_KpU3ipNF8nq@8
_W8nYYsyqB5vK8A
_cQonnq2h4V@8

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 106KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ