4a58c2836fb0ad27ede7218da2a45bb7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4a58c2836fb0ad27ede7218da2a45bb7_JaffaCakes118
Size

133KB
MD5

4a58c2836fb0ad27ede7218da2a45bb7
SHA1

420d0c05b7e30dd08d32a2e3c3b848cdef4a6ba9
SHA256

6dc3254f495b7f1a705beae390671e35f36d19c7463906c1aad17a930cdf4ede
SHA512

2077d4846a7d328d335bf3896168b7664b7cf08d2992abba3bdff211d4eb2ef4b7a1a6f4a865535a2f1d2f5dea4c7fc65e87e006f78a0b49e61d925ca05f4d7f
SSDEEP

1536:1md7t1GW+E14dhYyLs1Cr9ZisYGTpCEzTw8AJVmPNdGGjmRnpTEOM/oYBB7:IROWf14dhy1oicYwkhWNfGi/NBJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4a58c2836fb0ad27ede7218da2a45bb7_JaffaCakes118

Files

4a58c2836fb0ad27ede7218da2a45bb7_JaffaCakes118
.exe windows:1 windows x86 arch:x86

aec24dc29bf1f2ba28edcfbd867ddcb9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringW
GetModuleHandleA
SetFilePointer
SetUnhandledExceptionFilter
HeapSize
GetModuleFileNameA
FindClose
GetStartupInfoA

gdi32

GetDeviceCaps
EndDoc
SetBkMode
CreatePen

user32

CallWindowProcA
GetFocus
DestroyWindow

ole32

CoSetProxyBlanket
CoCreateInstance
CoUninitialize

msvcrt

exit
_controlfp
__setusermatherr
_XcptFilter
__set_app_type
_initterm
__p__fmode
__p__commode
_acmdln
_adjust_fdiv
memcpy
__getmainargs
_getdcwd
_except_handler3
_exit

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 103B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ