44b76de9ba3a5c211129363ab7672838_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

44b76de9ba3a5c211129363ab7672838_JaffaCakes118
Size

135KB
MD5

44b76de9ba3a5c211129363ab7672838
SHA1

a12156c13ff137d3c871ff67534c47c069597326
SHA256

e0d41d34fa5e30c1f24089cfcae69d48ed0ed62b3e4718e1d003f4914c8e1f8d
SHA512

c42068cb1d4882d6761532d4f6b1a07ce890740537e79025ef6edc1b23b7b63ebb20bfe9da00e72268bde0eb1ab070afa6368c7be2be248fa0092dd1df35f70d
SSDEEP

3072:mu1K4cmjdqCg5xH7TbpRKpfwTVURzqzOmedkVZx9okXH3W:DDcsYzp6wTVURz+OGUkXH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
44b76de9ba3a5c211129363ab7672838_JaffaCakes118

Files

44b76de9ba3a5c211129363ab7672838_JaffaCakes118
.exe windows:5 windows x86 arch:x86

b5ee2c028d40d6b5e8d673f1853db16b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\nlcszamfjYwenM\yjapJkxxsfF\dDUfvgumNTettB\edhkTjzznyf.pdb

Imports

user32

EndDialog
RegisterHotKey
IsCharUpperW
GetTopWindow
SetFocus
KillTimer
CheckDlgButton
GetWindowDC
IsMenu
wsprintfW
CloseDesktop
GetNextDlgTabItem
LoadCursorW
CheckMenuItem
GetClassLongW
GetClassInfoExA
SetScrollRange

msvcrt

_controlfp
__set_app_type
memset
__p__fmode
__p__commode
wcsstr
_amsg_exit
_wtoi
atoi
_initterm
_ismbblead
_XcptFilter
strncmp
_exit
_cexit
__setusermatherr
__getmainargs

gdi32

Rectangle
PtInRegion
CreatePenIndirect
OffsetRgn
GetFontData
CreateDiscardableBitmap

shlwapi

ChrCmpIW
StrCmpIW
UrlGetLocationW

kernel32

LoadLibraryA
GetModuleHandleA
GlobalReAlloc
GetModuleFileNameA
CreateRemoteThread
GetSystemDefaultUILanguage
AreFileApisANSI
lstrlenA
GetTempPathA

Exports

Exports

?CreateDlgMessage@@YGHPAXPADK|U

Sections

.text
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ort
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 104KB - Virtual size: 229KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE