44716aa8308499d72db692a455850ecd_JaffaCakes118 | Triage

Sharing

General

Target

44716aa8308499d72db692a455850ecd_JaffaCakes118
Size

2.1MB
MD5

44716aa8308499d72db692a455850ecd
SHA1

b49ed82b4e2556ce4a37dddde21e24250e673bbf
SHA256

eeb9a01f446459ffa6a42b6d0635a47859efb4865d9e9cb910326f1edc8706fe
SHA512

8b9ba7251898abb929236d83038412907f29330545b50940a93ce1b5432538468a84123292b1e3963d5309ef55e201f561534fcd2219bdb8b856b35dd54f9f30
SSDEEP

49152:1z33bU9sucNLSbF9UFcQQ5bG/dAdTrV/S/1v2FS3p8:1HU9suwSJ6WD58AdJc1Oka

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
44716aa8308499d72db692a455850ecd_JaffaCakes118

Files

44716aa8308499d72db692a455850ecd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7d4744e0e0ed7139da5d580b09687048

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DialogBoxParamA
wsprintfA
MessageBoxA
SetWindowPos
SendDlgItemMessageA
EndDialog
GetWindowRect
GetSystemMetrics

msvcrt

strlen
_XcptFilter
__getmainargs
_initterm
_exit
memcpy
exit
__setusermatherr
__p__fmode
__set_app_type
_except_handler3
_controlfp
strcpy
_adjust_fdiv
_acmdln
__p__commode

kernel32

_lread
GetStartupInfoA
GetModuleHandleA
GetModuleFileNameA
GetDriveTypeA
WinExec
FindFirstFileA
_lopen
_llseek
FindNextFileA
_lclose
FindClose

Sections

.text
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 964B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 544B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ