310701de247a29b2850b9c6fba0b2499_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

310701de247a29b2850b9c6fba0b2499_JaffaCakes118
Size

13KB
MD5

310701de247a29b2850b9c6fba0b2499
SHA1

d99868c33a2c91616d6fe477b434b2544bfbf636
SHA256

c0e3d154a025c806b47b35cc77615e67fa06fc5618df2498bf2002032a1fac9a
SHA512

bd7f647cf049c5800121cd6776902164ef1db69f3b3030b27ac68983b0308fb5f3b1aebc48ec695de29adc06ed58b4389c07438f3e613c271495e529db589fa6
SSDEEP

384:ub1m6GtI0cciRicd50vLT63MMe/KxhqlcPn8Uhf958:g1yMdRi6WvnQPFhIcP8Uj6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/mdbruter.exe

Files

310701de247a29b2850b9c6fba0b2499_JaffaCakes118
.zip
mdbruter.exe
.exe windows:4 windows x86 arch:x86

34e4de5f1a6d5a397257f1e435c284d2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

kernel32

SetPriorityClass
CreateThread
GetModuleHandleA
ExitProcess
GetCurrentProcess
GetTickCount
TerminateThread
ExitThread
Sleep

user32

MessageBoxA
SendMessageA
IsDlgButtonChecked
CheckDlgButton
GetDlgItemInt
GetDlgItem
GetDlgItemTextA
SetDlgItemInt
SetDlgItemTextA
KillTimer
SetTimer
EndDialog
DialogBoxParamA
SetForegroundWindow
DestroyWindow
ShowWindow
CreateDialogParamA

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 810B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 157KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ