39917e735a48ae46c54f58f0fdab833c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

39917e735a48ae46c54f58f0fdab833c_JaffaCakes118
Size

22KB
MD5

39917e735a48ae46c54f58f0fdab833c
SHA1

03169c0477e3d2980eb6d7b7dbb49be903b0f109
SHA256

ac65b57f9811bc54a4fd3b8bc9949e7961bdcb0686d6cd9b90a8018301b07bf7
SHA512

89ff9835685b0b1207fc74d4247e764cab4a6bbc00be81092d16ed627beda675f54fdf2dbc61239b716328668d2536f82f7b7cb41174cbb58adc4afe47f58433
SSDEEP

384:Gx7xYIbdXTHJGHhyQQId1/VXEU9j0rIFLa:6xYKXTHJYdQId1SUaqL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
39917e735a48ae46c54f58f0fdab833c_JaffaCakes118

Files

39917e735a48ae46c54f58f0fdab833c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3aaf0117da763433d7494dba4173c712

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
CloseHandle
GlobalFree
GetVersion
LocalAlloc
GetModuleHandleA
GetTickCount
Sleep
lstrlenA
CreateEventA

gdi32

GetStockObject
SelectObject
GetTextColor
SetROP2
SetPixel
LineTo
SetBkMode
GetBkColor

user32

BeginPaint
ScreenToClient
TranslateMessage
DestroyWindow
SetWindowTextA
ShowWindow
DefWindowProcA
GetFocus
EndDialog
EndPaint
GetClientRect

msvcrt

wcstoul
_exit
_c_exit
exit
_XcptFilter
toupper
wcslen
_controlfp
__set_app_type
_initterm
__p__commode
rand
memmove

Sections

.text
Size: 1024B - Virtual size: 1020B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ