4a806035b0f5f89b72016b95cc44b7b0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4a806035b0f5f89b72016b95cc44b7b0_JaffaCakes118
Size

60KB
MD5

4a806035b0f5f89b72016b95cc44b7b0
SHA1

43106282c26fafd16f1089c55f5887e1a2292d7f
SHA256

06a7d3f4d581b25238409d5d6fb747ce5fb981e72960f5d828eb07b2598aa791
SHA512

71fb38d9bd33e7eca3845eab7bceba319bc3346822bc6e8ad0d3bacf0c5a22361b2b3ac5ca656cffea51481eb3deb1db99a723cd77b14bc6f1eb548f394b129e
SSDEEP

768:vhxdXNkFZn9X/XmiloXP1GpQd0AaUVaBKUwVKj2Jr5nNxG4CkkLj+EH+noGo1CRt:ly92PcUiKUw9rJNxG5SEH+nmwm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4a806035b0f5f89b72016b95cc44b7b0_JaffaCakes118

Files

4a806035b0f5f89b72016b95cc44b7b0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a4b5180a8d4396d21111663fc9b3e49e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

__vbaFileSeek
__vbaCyStr
__vbaCheckTypeVar

user32

OemToCharW
LoadMenuA
EndPaint
SetFocus
CreateIconFromResource
CreateCursor
CopyImage
CloseWindow
DeleteMenu

kernel32

EnumResourceNamesA
FindResourceA
ExitThread
EnumResourceLanguagesW
lstrcpyA
lstrcmpiA
TlsAlloc
Sleep
SetLastError
ReadFile
RaiseException
MapViewOfFile
GetVersion
CompareStringA
GetSystemTimeAsFileTime

dinput

DirectInputCreateW

Exports

Exports

Bvyu
Lpucedirjcl

Sections

.text
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ