2b547b2d2c3e39468cc281f4f3a3e182_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2b547b2d2c3e39468cc281f4f3a3e182_JaffaCakes118
Size

64KB
MD5

2b547b2d2c3e39468cc281f4f3a3e182
SHA1

f407744edac1b585ecb39070b84672221dd18d88
SHA256

77e260541e2e5c2492121588dff9d8df7dd0984594c9a2e5a712ce48709132d5
SHA512

09b6f68499a1a73b546300246ba660eaaa459ca507be0aa9787064ff9eb45ad4b257831e5bd0c7630f3aab637488281b71e06bc603c5fcd551263577e712a7c5
SSDEEP

1536:5FzwXOcVKJCSY/wwFIWnbhhQE2oLgvwC28CBLfHSyVi13X:5FzwdwJg/sWn12ToLgo3Pxy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b547b2d2c3e39468cc281f4f3a3e182_JaffaCakes118

Files

2b547b2d2c3e39468cc281f4f3a3e182_JaffaCakes118
.exe windows:4 windows x86 arch:x86

60c5d707ee34d9b4385c941400af9d9a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DrawStateA
DestroyIcon
DefDlgProcA
CreatePopupMenu
CreateDialogIndirectParamA
CreateDesktopW
CreateCursor
CopyImage
CloseWindow
CharUpperBuffA
CharUpperA
CharToOemA
CharNextA
BeginPaint
ActivateKeyboardLayout

kernel32

CompareStringA
lstrlenA
lstrcmpA
OpenFileMappingA
MapViewOfFile
LoadLibraryA
GetVersionExA
GetVersion
GetSystemTimeAsFileTime
GetSystemTime
GetStartupInfoA
FreeResource
ExitProcess
EnumResourceNamesA
EnumResourceLanguagesA

Sections

.text
Size: 20KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 39KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ