5b9e7fcaa3848f521710fafd9b2cdab2_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5b9e7fcaa3848f521710fafd9b2cdab2_JaffaCakes118
Size

228KB
MD5

5b9e7fcaa3848f521710fafd9b2cdab2
SHA1

7e046146a6bd831b93c1336ccc0f783b56d5056e
SHA256

c1147ce3acb58dc5c972f0dc3b9fa72bc4ad5693ee24c12649b198c9c0b537e3
SHA512

6c34c73818db926556e1fe434e681e93806d1baa466c1675af2d8c3af0fdaf55d385fb1706b31ac6a101e1cf18c75ad1ff2e8ede885653de848335fdb0fd477b
SSDEEP

3072:fv5waWaqSy2qtQwJG/wNj3MEipBjPxTUDebw0ZTf9wI2WghjaVQ3:ZtaSyRQwnNjcEqhxTIoZvZOWV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5b9e7fcaa3848f521710fafd9b2cdab2_JaffaCakes118

Files

5b9e7fcaa3848f521710fafd9b2cdab2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4a108651588e62eeb70346325adf0726

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetMenuItemID
GetMenu
IsChild
GetKeyboardType
GetMenuItemCount
GetDesktopWindow
IsWindowEnabled
GetLastActivePopup

comdlg32

GetOpenFileNameA
ChooseColorA
GetFileTitleA
FindTextA

shell32

DragQueryFileA
SHGetFileInfoA
SHGetFolderPathA

kernel32

LoadLibraryA
GlobalAlloc
GlobalDeleteAtom
ExitProcess
GlobalAddAtomA
VirtualAlloc
VirtualAllocEx
GetProcessHeap

Exports

Exports

_EsE2Y9qMl9CG

Sections

CODE
Size: 206KB - Virtual size: 206KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bpdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 743B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.esdata
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ