49024379b7c52c9873421c339bb02dd5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

49024379b7c52c9873421c339bb02dd5_JaffaCakes118
Size

8KB
MD5

49024379b7c52c9873421c339bb02dd5
SHA1

cfb44254474dd1a1eec9a4c0cf440f89d4a0830e
SHA256

161e89509a2775507a70af5e9c73e0df37c518050701196bd032069531ca073d
SHA512

c1f2e9cee51a42e3fce55985556a6a4f7954973867e1dec090b31ed6847a41c517bed1d3c8effbe1d68a584514cf65b13bfbdb8d53d7374a929b1249bc83350f
SSDEEP

192:ZX53eK9J6SmxRXucgVIsmRti9YIEw+Ou0iii/3:B5BJ6llucgsHi9YIEw+Ou0iii

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
49024379b7c52c9873421c339bb02dd5_JaffaCakes118

Files

49024379b7c52c9873421c339bb02dd5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c4f287f3570bd7b0ef1b2b5a1647f9e1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SendMessageA
SendDlgItemMessageA
ReleaseCapture
SetDlgItemTextA
LoadIconA
IsDlgButtonChecked
GetDlgItemTextA
GetDlgItem
UpdateWindow
MessageBoxA
EndDialog
EnableWindow
DialogBoxParamA
CheckDlgButton

kernel32

lstrlenA
lstrcpyA
lstrcatA
RtlZeroMemory
ReadFile
GetStartupInfoA
GetModuleHandleA
GetCommandLineA
ExitProcess
CreateThread
CloseHandle
CreateFileA
CreatePipe
CreateProcessA

shell32

DragFinish
DragQueryFileA

gdi32

DeleteObject
CreateFontIndirectA

comdlg32

GetOpenFileNameA

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE