229c6663211428fb7d994a912247a05c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

229c6663211428fb7d994a912247a05c_JaffaCakes118
Size

431KB
MD5

229c6663211428fb7d994a912247a05c
SHA1

a59a030b29b10566b5e9f0d0e94e51f4eda66457
SHA256

b5d0746172ffec9752002a887ef38074489e604e22287bfccf06557eb3f1102c
SHA512

488563f20a2a683e03a16122cc1ff80bd6671972704ddeaeedc083f087aeec21b9da06778e0928be16f6eb51b0683ce7eb34c9352dd2ef1ab0f3331e806303ff
SSDEEP

6144:ZUDsemSRCwi36JgHNJyfbd/AmyOqkcx0/K0LmMw6CVzpMyYATqpAnMX/f+SNg7OK:ZUDsL2O7yfimjzLmMwLV/hnMOayOT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
229c6663211428fb7d994a912247a05c_JaffaCakes118

Files

229c6663211428fb7d994a912247a05c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b690e352d76335ce514a77dc4b133437

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetClientRect
SendDlgItemMessageA
FindWindowA
SetForegroundWindow
SetDlgItemInt
ArrangeIconicWindows
IsWindow
CloseWindow
IsZoomed
SetSysColors
GetLastActivePopup

ole32

CLSIDFromProgID

oleaut32

LHashValOfNameSysA

gdi32

Arc
CloseEnhMetaFile
CopyEnhMetaFileW
BitBlt
CreateEllipticRgn
AbortDoc
CreateDCW
AddFontResourceA
CreateDCA
CreateCompatibleDC

advapi32

RegLoadKeyA
RegEnumKeyExA
RegConnectRegistryA
RegQueryValueA
RegSaveKeyA
RegDeleteValueA

kernel32

GetModuleHandleA
GetStartupInfoA
VirtualAlloc
GetStdHandle
GetProcAddress
WriteProfileSectionA
GetPrivateProfileStringA
GetPrivateProfileSectionA
GetProfileStringA

msvcrt

exit
_XcptFilter
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_exit
_acmdln

Sections

.text
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 132KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 273KB - Virtual size: 357KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ