2db27dec0c1fa6680b488ba3285ec668_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2db27dec0c1fa6680b488ba3285ec668_JaffaCakes118
Size

6KB
MD5

2db27dec0c1fa6680b488ba3285ec668
SHA1

acb74450b83c31cab3988e047f1938245bce72a6
SHA256

edc8329172daeb40b6bde5621a57839574dc43b66c602716438e189efe8d05bd
SHA512

4872803cfee8834576ad5f4f45b07160e32696cdf8fa1169ecc077f7e66b9a9fc4e7fb421c1c7ca92d9deebcad0e7a20044f91e76cd400dfd32bbf805968e886
SSDEEP

96:myTk/JBc7CxHk6qWE428QsgfEgf5n1NmpaBSL/FSKjOxNr4:uwGxHk6Acngf51EaaMKjcc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2db27dec0c1fa6680b488ba3285ec668_JaffaCakes118

Files

2db27dec0c1fa6680b488ba3285ec668_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4e272613a52a48d83012ee911eab441f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ChildWindowFromPointEx
CopyImage
CreateAcceleratorTableA
DdeAccessData

shell32

ILFree
SHLockShared
SHIsFileAvailableOffline
SHGetShellStyleHInstance

comdlg32

ChooseColorA
ChooseFontA
PrintDlgA
GetFileTitleA
GetOpenFileNameA
dwLBSubclass

comctl32

MenuHelp
PropertySheetA
ImageList_Merge
ImageList_SetBkColor
ImageList_Duplicate
ImageList_Merge

Sections

.text
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 751B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE