1c8d62de9940fff43f57f399155b7750_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1c8d62de9940fff43f57f399155b7750_JaffaCakes118
Size

100KB
MD5

1c8d62de9940fff43f57f399155b7750
SHA1

5294d93b0414ee351dd30214b134ac089047b4a8
SHA256

38da6026f59d02ded680f899082bedd93d56fe79e8e1700e5dcb1e076f9a92fd
SHA512

ddd41aad2bbfb406cedb6892b8ee1b2c0632f5c8c0ebda9771627fd736c562295a14f2786538c0aed06d9516fee2f11f34021f9cbb13830649fe3de32aa2a469
SSDEEP

3072:c+Ugb3OXSARURpnwCHfUrXIkqB1ubwXfM7B:chhXSWSnf/eYtvub2M7B

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1c8d62de9940fff43f57f399155b7750_JaffaCakes118

Files

1c8d62de9940fff43f57f399155b7750_JaffaCakes118
.exe windows:5 windows x86 arch:x86

45ad6ab6a67028f5d21ea4719bdf0b5d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

I:\kYhdCg\gHwfv\jzLZJ.pdb

Imports

comctl32

DestroyPropertySheetPage
CreateStatusWindowW
ImageList_AddMasked
ImageList_Write

user32

GetScrollBarInfo
DestroyIcon
IsDialogMessageA
GetPropA
GetWindowLongA
MessageBoxExA
KillTimer
PostMessageA
wsprintfA
GetAsyncKeyState
DrawStateW
FillRect
RedrawWindow
SendNotifyMessageW

kernel32

FileTimeToDosDateTime
GetProcAddress
GetTimeZoneInformation
HeapValidate
FindClose
lstrlenA
ReleaseMutex
GetFullPathNameA
GetAtomNameA
LoadResource
GetVersion
lstrcatA
GetCommState

gdi32

CreateDCW
GetPixel
SetBkColor
SetROP2
SetWindowOrgEx
SetBrushOrgEx
TextOutW
ScaleViewportExtEx

Exports

Exports

?tPrkKOpewsmwgnkm@@YGID_N@Z
?mmioAupFCcCHYGdeXEuPqS@@YGPAXG@Z
?oAIpAdjsojmbotExb@@YGXPAF@Z
?gcKrsDNvcw@@YGPADFE@Z
?kxLRcwk@@YGMMH@Z
?bKgnpHgAma@@YGXPAGK@Z

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 81KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ