2b62957f68e662565697e3cff39e4005_JaffaCakes118 | Triage

Sharing

General

Target

2b62957f68e662565697e3cff39e4005_JaffaCakes118
Size

117KB
MD5

2b62957f68e662565697e3cff39e4005
SHA1

ec31668ab9aa0c76f240f6e34e71999fdc8fd16b
SHA256

2a50c0b37bf7336d41208db33a48315bb963296c5375932bd97f6847c3027a3e
SHA512

686db887e8b24fb44be8b7a17d1228027ccd586ebf6cbbe2e51c7d9328035111ffc1765382f2fe18f24539b4112f924d0705bf4b1c63c91781a4a2d03ee03574
SSDEEP

3072:dCDmGqmcN9GWhgCNX5xQyir2hBRPsRVF:dQmG5C915xyrb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b62957f68e662565697e3cff39e4005_JaffaCakes118

Files

2b62957f68e662565697e3cff39e4005_JaffaCakes118
.exe windows:4 windows x86 arch:x86

84650143d2f8181e49a1f4e326e51133

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetSpecialFolderLocation
SHGetFileInfoA
Shell_NotifyIconW
SHGetFolderPathA

kernel32

GetFileType
LoadLibraryA
GetLastError
GetFileSize
GetFullPathNameA
VirtualAlloc

user32

DrawIconEx
DrawIcon
DrawMenuBar
GetWindow
DrawFrameControl
DrawTextA

Exports

Exports

__BwlHO
W9WV3axpii@24
_Awe0X
MulMKIoA@12
cKYNzM85l
xKFRF9YaBUH
_BrseS8@16

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 874B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 102KB - Virtual size: 213KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data
.rdata
.rsrc/0/DIALOG/TEXTFILEDLG
.rsrc/0/MANIFEST/1
.xml
.rsrc/0/RCDATA/DVCLAL
.rsrc/0/STRING/4094
.rsrc/0/STRING/4095
.rsrc/1033/BITMAP/BBABORT.bmp
.rsrc/1033/version.txt
.text