37e360bc659f2c392604cd8be5298e87_JaffaCakes118 | Triage

Sharing

General

Target

37e360bc659f2c392604cd8be5298e87_JaffaCakes118
Size

174KB
MD5

37e360bc659f2c392604cd8be5298e87
SHA1

45a3b841ad520f1901479ab41ca2ace34b4dcaf7
SHA256

cedccdc60e3274be00187b8bb7cc33c8fb9e244f09b4822bbd2c64dc6f1a9c63
SHA512

593dfac216471ace7af9972de0046101e910b0ca3d89a61c825dff1c0da71d6a339d0730d499748786d4db69bb8cba22a3e7366443a68b36eaef1ccf3cd6b891
SSDEEP

3072:W0s00T8LBb3NIGbVcnk4TGIS1nvxONJdvdxUHe8kroN7TbLFh6Pqg1EDvoDU:jszT8t7bcZ1SRxOhMeJO7XLbwqKEDvoY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
37e360bc659f2c392604cd8be5298e87_JaffaCakes118

Files

37e360bc659f2c392604cd8be5298e87_JaffaCakes118
.exe windows:5 windows x86 arch:x86

036c22ff8ed717f15da250823215d3dc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

S:\vkwTMxv\EeufpftpCnDtZ\YifFWbusYlY\Duhapdi.pdb

Imports

shlwapi

UrlEscapeA
ChrCmpIW

user32

SetDlgItemTextW
GetMenuItemRect
ShowScrollBar
PostMessageA
RemoveMenu
GetPropW
LoadImageA
GetForegroundWindow
KillTimer
LoadIconW
TranslateMessage
SendMessageW
wsprintfW
MapDialogRect
DestroyMenu
IsCharAlphaW
IsCharUpperW
GetWindowDC
IsMenu

gdi32

CreateBitmapIndirect
RealizePalette
RestoreDC
RectInRegion
CreateSolidBrush
SetBitmapDimensionEx

kernel32

GetModuleFileNameA
LoadLibraryA
lstrlenA
LoadLibraryExA
QueryPerformanceCounter
lstrcpyA
LoadLibraryW
GetDateFormatW
LockResource
IsDBCSLeadByte
GetModuleHandleW
GetFileAttributesExW

msvcrt

_controlfp
__set_app_type
__p__fmode
__p__commode
_amsg_exit
bsearch
_initterm
_ismbblead
_XcptFilter
_exit
strlen
_cexit
realloc
isdigit
__setusermatherr
__getmainargs

Exports

Exports

?CreateDlgMessage@@YGHPAXPADK|U

Sections

.text
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.xyz
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 143KB - Virtual size: 332KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE