44a8b7800eb8ce7edacee6275e0a0d78_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

44a8b7800eb8ce7edacee6275e0a0d78_JaffaCakes118
Size

16KB
MD5

44a8b7800eb8ce7edacee6275e0a0d78
SHA1

e0049477e8e2fb1ce347102a99123137cd2fd330
SHA256

1657241d7da0b39efb7d6a4edf4c1fda7a89a98ab740bfc729d2fe583d36523f
SHA512

0e45e7cb57dbf0434d6ae4d4dab8d138eca5f9a12176715cfa740ece00dd0d670a14a27e2e757c147cd2159efb49a2afad923bdb6e07cb8480934b093cde0e20
SSDEEP

192:tWoETkPIeHhsSUv6GdycOgoNjkTy2ooXydxWe+m+uMg7upqadUQGkLQVw5GB1bfk:s5kIeHhszmk0hdxWe+m3wqeUPlB5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
44a8b7800eb8ce7edacee6275e0a0d78_JaffaCakes118

Files

44a8b7800eb8ce7edacee6275e0a0d78_JaffaCakes118
.exe windows:4 windows x86 arch:x86

60858ef6afad8ca4a13c8243f0878441

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
GetThreadTimes
SetConsoleCtrlHandler
GetConsoleWindow
DisableThreadLibraryCalls

d3d8

ValidatePixelShader
ValidateVertexShader

tapi32

phoneSetData
phoneConfigDialogA

user32

GetWindow
GetActiveWindow

Exports

Exports

CreateQqwxxiwbcd
SetRdisyyr

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ