48c33a380ff727429804cf986959f3a9_JaffaCakes118 | Triage

Sharing

General

Target

48c33a380ff727429804cf986959f3a9_JaffaCakes118
Size

49KB
MD5

48c33a380ff727429804cf986959f3a9
SHA1

bb95304aac319b430040e832a637aaa7b787f9e7
SHA256

2c7d6c8765b0bebfa9dce69e847aa0c4a534b7902f6d6496a1d08b3babbc9d4d
SHA512

7f30143e66e0d4230818ef3072c46ff4389fd728326d2f219a9cd24ed19163f055596ab9c11ed420950e57d4ddb08903648d1deee0fcd3aada54f93ddb1b86a9
SSDEEP

768:EyAUnK3IgiSaaVWmGJl8Mm0+byVw5BF985pwvv+HJq+JyKxqTOKu58VSDR:eUnQUSqmG00qCwLHmphJbAOKVSD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
48c33a380ff727429804cf986959f3a9_JaffaCakes118

Files

48c33a380ff727429804cf986959f3a9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2a11dd09c6256c56e699b1f6880b7356

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BuildCommDCBAndTimeoutsA
DeleteFiber
EnumResourceLanguagesA
ExitProcess
HeapFree
IsDBCSLeadByteEx
SetEndOfFile

user32

ArrangeIconicWindows
DdeImpersonateClient
DialogBoxParamA
DlgDirListComboBoxW
EnumPropsA
LockWindowUpdate
MsgWaitForMultipleObjectsEx
OemToCharW
SendInput
WINNLSEnableIME

gdi32

CheckColorsInGamut
CreateBrushIndirect
CreateScalableFontResourceW
EndPath
FixBrushOrgEx
GetCharWidth32W
GetCharacterPlacementW
GetGlyphOutlineW
GetTextCharset
LineDDA
PathToRegion
SetMapperFlags
SetMetaRgn
StretchDIBits

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE