4cd7c407a1a9bba6d09e265cdb343c1f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4cd7c407a1a9bba6d09e265cdb343c1f_JaffaCakes118
Size

117KB
MD5

4cd7c407a1a9bba6d09e265cdb343c1f
SHA1

70f08819a2b3e4326718812ee5a7667601aad14f
SHA256

c0aa9d000c5ef871105387b19d3600feabd38068057efd754be63fbde0ac16be
SHA512

70449385f80a98bdae07d0fe392a703c2782226610863665778d8e7c542bb5f72b5e069e313fc1ac44767500ccf3d36990ae459d3a78dffb745e3b47e65a0cce
SSDEEP

3072:rYeorhSvWS69hsemQ3vAkHZJngEqUB0Mke:rvWj5vAk5JnvB0M

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4cd7c407a1a9bba6d09e265cdb343c1f_JaffaCakes118

Files

4cd7c407a1a9bba6d09e265cdb343c1f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

721b1982e247d2eda98d261183da6b2f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetBkMode
CreateCompatibleBitmap

user32

GetTopWindow
PostQuitMessage
RedrawWindow
LoadIconA
DrawMenuBar
IsDlgButtonChecked

kernel32

VirtualAlloc
GlobalAlloc
GetProcAddress
ExitProcess
GetCommandLineW
GetModuleHandleA
GetOEMCP
GetThreadLocale

shell32

SHGetFolderPathA
DragQueryFileA
Shell_NotifyIconW

Exports

Exports

6mGqr8@20
DGx6L05qt9Idvy
GwijHI9f
_0hsKdWFQz@12
p2T4oz63J6rU

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 97KB - Virtual size: 228KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ