2f65df4876466afc1c9e9e12218718e2_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2f65df4876466afc1c9e9e12218718e2_JaffaCakes118
Size

126KB
MD5

2f65df4876466afc1c9e9e12218718e2
SHA1

7510ad66b014f5d4a549afeea0a4d0fa87daba5d
SHA256

f640682586a869f5e1dbdc3541c0e5da55e4fc93643d7eb43a4ed16887308af1
SHA512

b7c929c86099877e255dff186194e5f9b63b2e85ec8738323a789b5efaaebc9783c58a7df6a9de028facf31c3d3a8e4e05371e43dc49b77de468242275d1ec99
SSDEEP

3072:r/jPh81XVvrg4ZL6dcpAOz4Ytzp0gHWPd6Ml:rTAvn6q378gGQO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2f65df4876466afc1c9e9e12218718e2_JaffaCakes118

Files

2f65df4876466afc1c9e9e12218718e2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8960d5bbfda11746942c11c7502b0b50

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowLongW
IsMenu
CharNextA
CreateMenu
GetCapture
GetWindowTextA
GetWindowThreadProcessId
GetWindowDC
GetWindowPlacement
DrawMenuBar
GetWindowRect
IsCharUpperA
InflateRect
GetMenu
GetActiveWindow

kernel32

GetCurrentProcessId
LoadLibraryA
GetCommandLineA
GetProcessHeap
GetACP
GlobalAlloc
ExitProcess
GetCPInfo
VirtualAllocEx

Exports

Exports

veDLrZuBzLtZy@16
k8wHGwTFmkCdXj@20
_GlQ5AKO9Au8Jx3@16
_ktKOG@4

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 428B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 212KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data
.rdata
.rsrc/0/DIALOG/TEXTFILEDLG
.rsrc/0/MANIFEST/1
.xml
.rsrc/0/RCDATA/DVCLAL
.rsrc/0/STRING/4094
.rsrc/0/STRING/4095
.rsrc/1033/BITMAP/BBABORT.bmp
.rsrc/1033/version.txt
.text