49b4bc0e8233249f78596be9056bae91_JaffaCakes118 | Triage

Sharing

General

Target

49b4bc0e8233249f78596be9056bae91_JaffaCakes118
Size

10KB
MD5

49b4bc0e8233249f78596be9056bae91
SHA1

70a0eefd68c86c5f4f6b5ad53f15bcb9343c9e27
SHA256

59857bcf902615e02ad1ac1c673b52e541b315182dbf519d6779099552bda7e4
SHA512

a6cbac510675cf384bfbfa48065e4188df7062809bf0acbddb3e2b8062f4937d5d89714f25d8ba238049ccaf8ef7ad4d58ca5a29973e38dc66c37e48dca979c8
SSDEEP

96:ibP1sK7bNOEmJRk1g6WUKP3FyGl+U8iwNcanx28eNR9rwOWrNA6N7VD2+du2qBXP:iqKvmJGS6TKP3Jl+FHaax4R6Ox6BVsAW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
49b4bc0e8233249f78596be9056bae91_JaffaCakes118

Files

49b4bc0e8233249f78596be9056bae91_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b04c18598431f07fe0933e7a9a7b6390

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DrawTextW
DrawTextA
LoadMenuA
GetFocus
GetDC
InsertMenuA
CopyIcon
DrawIconEx
CreateIcon
DialogBoxParamA
GetMenu
DrawIcon
CloseWindow
LoadCursorA
DialogBoxParamW
GetWindowTextLengthA
CopyImage
GetDlgItem
EndDialog
IsMenu
CopyRect
IsWindow
GetCursor

kernel32

lstrcpynA
LCMapStringW
GetStartupInfoA
GetACP
GetModuleFileNameA
CreateFileA
SetFilePointer
GetStringTypeA
GetCurrentProcess
MultiByteToWideChar
LCMapStringA
lstrcpynW
lstrcatA
lstrcpyA
GetVersion
TerminateProcess
GetFileType
GetCPInfo
GetStdHandle
GetOEMCP
WriteFile

comctl32

ImageList_Draw
ImageList_AddIcon
CreateToolbarEx
CreateMappedBitmap
ImageList_Add
ImageList_EndDrag
ImageList_GetIconSize
ImageList_Create
DrawStatusText
ImageList_LoadImageW
CreateToolbar
MenuHelp

advapi32

RegOpenKeyExW
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyW
RegCreateKeyExA
RegCreateKeyExW
RegOpenKeyA
RegEnumValueW
RegOpenKeyExA
RegEnumKeyW

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 17.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ