43a8664173de58e9e655ac194eb1cf24_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

43a8664173de58e9e655ac194eb1cf24_JaffaCakes118
Size

132KB
MD5

43a8664173de58e9e655ac194eb1cf24
SHA1

265b971c8a1b4c45783cd9af7e18ea1caba47f59
SHA256

a55fa9867244789b23814a9b1dfdba0c2b2b38f2d625920cb2670cc538316359
SHA512

a63fc56d5a1fa317be112db39dbea924cb9385f38fc0221d9e5a1f5c001a49483975089dff4d1541ee0f9b80ad49ae34a9651c737d2b35d904442fa739d32a6d
SSDEEP

3072:LV4vM7rK0nHQlsNY1425qy7SQQoCipK3N0fZ:L+ur1nHZNWeLNiki

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
43a8664173de58e9e655ac194eb1cf24_JaffaCakes118

Files

43a8664173de58e9e655ac194eb1cf24_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e7b6eb569d165e16d409344f8df84671

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetTextColor
SetBkMode
BitBlt
SetBkColor

user32

GetWindow
GetActiveWindow
GetForegroundWindow
GetMenu
GetIconInfo
GetMenuItemCount
GetKeyNameTextA

comdlg32

FindTextA
GetFileTitleA
GetOpenFileNameA

kernel32

GlobalAlloc
GetCPInfo
FreeResource
VirtualAllocEx
GetCommandLineA
LoadLibraryA
FreeLibrary
IsBadHugeReadPtr
GetACP
ExitProcess
VirtualAlloc

advapi32

RegCreateKeyExA
RegOpenKeyExA
RegEnumKeyExA
RegQueryValueExA

Exports

Exports

W4PxoQ8TADp
WqYN5_I@12
flCLi4QTWLOV0
_t7movH0Wg

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 113KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ