2b446c9d4c3531178f3aa9a9d3da0aee_JaffaCakes118 | Triage

Sharing

General

Target

2b446c9d4c3531178f3aa9a9d3da0aee_JaffaCakes118
Size

28KB
MD5

2b446c9d4c3531178f3aa9a9d3da0aee
SHA1

4884778d4fb10c3ef1b3f8e99e58f1f493f30db6
SHA256

794625d4c16735b25963b5d21dee789a8c9c3c15321aa6f5be9b94d1b29dc128
SHA512

79877dd7ceff78a98b47a9cfaf9e80ac798da48d53c751696077e21cbc176ced5517e1b4418ecccabf06d4679f25634eb273e5ba53678cd1d46f5e9ba6badfce
SSDEEP

768:x5RyOB0kMTTqJ93k7AWwkBYVxzf7MZ/1JR5+r:x5RY5Tw3rWAod1JfE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b446c9d4c3531178f3aa9a9d3da0aee_JaffaCakes118

Files

2b446c9d4c3531178f3aa9a9d3da0aee_JaffaCakes118
.exe windows:4 windows x86 arch:x86

42e65191410381fcc3d72ff2bfafb6f3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CopyImage
ChangeMenuW
CallMsgFilterW
CreateMenu

gdi32

GetDeviceCaps
FloodFill
PathToRegion
PtInRegion
GdiStartDocEMF
RectInRegion
PolyPatBlt
GetTextColor
GetPixelFormat

shell32

SHEmptyRecycleBinA
StrRStrW
SHFileOperation
Control_RunDLLW
SHFileOperation
SHGetDesktopFolder
RealShellExecuteExW

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE