420260729ae1b6b0c6b16e987f80faf3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

420260729ae1b6b0c6b16e987f80faf3_JaffaCakes118
Size

26KB
MD5

420260729ae1b6b0c6b16e987f80faf3
SHA1

aea6711f3a744be8d689e761c03ef1d0754cd6c7
SHA256

d2e0407f704676682ecff8bba4cd903b109fcad6b80036c8bc99754f3a90c58e
SHA512

66b38bd58cac7ff1bd0ab3964ccdaa5dc16e2ef27332c2e00a9ffbe9eba26af3271fe8a5f62818e47592709def3c8203d58801f14b5fcf6b1f49fccabf8ba729
SSDEEP

384:GSqzihBopaQxhGo5RBsUN9iZnN7NCXvb3bbUfMS6Dw5uCLscn8:7+USXSoBtN9iZnNJCDLwMS6DAuF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
420260729ae1b6b0c6b16e987f80faf3_JaffaCakes118

Files

420260729ae1b6b0c6b16e987f80faf3_JaffaCakes118
.exe windows:1 windows x86 arch:x86

46ca14a90343b9cb02b9a4a8d3307b79

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreateWindowExA
LoadIconA
LoadCursorA
RegisterClassA
GetMessageA
DispatchMessageA
DefWindowProcA
SetWindowLongA

gdi32

CreateSolidBrush
SelectObject

kernel32

GetCurrentThread

shlwapi

StrChrA

Sections

.idata
Size: 512B - Virtual size: 474B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.code
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE