29cae1fb116b0de554bc4e5e77c0b23a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

29cae1fb116b0de554bc4e5e77c0b23a_JaffaCakes118
Size

72KB
MD5

29cae1fb116b0de554bc4e5e77c0b23a
SHA1

074a92b9abce1b97e2b119744aaa465a96fc274f
SHA256

daabc252c13a867db2d5f720023bedbb4480179080eb2a819bde4221870da0f0
SHA512

be25f81f8241605bbf8f81935df1edb0d14fa6afa89051b20238a45ca558470a65099e1cfad09afb0dcc386f899f6596ff5533686f8064dc250fe17c39a99a57
SSDEEP

1536:SFv/IZctYYpVKZ1YXNt962lm4ifWsrUEFiIWh1zWGy3VrXr:sIZnhZ1WT9Dl8OcNi9KGWhr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
29cae1fb116b0de554bc4e5e77c0b23a_JaffaCakes118

Files

29cae1fb116b0de554bc4e5e77c0b23a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6c6a18b843a2a0e75066602585150fc9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

BeginDeferWindowPos
GetDoubleClickTime
MessageBoxA
LoadStringA
SetFocus
CheckRadioButton
DefMDIChildProcA
ShowWindow
SetCursor
SetClassLongA
UpdateWindow
FindWindowA
DefFrameProcA
DeleteMenu
EnumChildWindows
wsprintfA

gdi32

GetTextExtentPoint32A
CreateCompatibleDC
CreatePen
SetBkMode
EndPage
CreateFontIndirectA
Polyline
EndDoc
SetMapMode
SaveDC
LineTo
SetROP2
GetObjectA
CreateRectRgnIndirect
GetTextMetricsA
CreateDIBSection

kernel32

SetEndOfFile
WriteFile
MapViewOfFile
lstrcatA
DeleteFileA
GetTimeFormatA
DeviceIoControl
SetErrorMode
GetSystemInfo
LoadResource
GetLastError
InterlockedDecrement
TlsSetValue
ReadFile
EnumSystemLocalesA
DuplicateHandle
MulDiv
HeapDestroy
ExpandEnvironmentStringsA
GetProcessAffinityMask
lstrcmpA

Sections

.text
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 944B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ