6583932b67ca8a091bf8d845a5420725_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6583932b67ca8a091bf8d845a5420725_JaffaCakes118
Size

20KB
MD5

6583932b67ca8a091bf8d845a5420725
SHA1

1f137e667f379d49fb55a1f1cafc002f53b3e03e
SHA256

d3e164a67730e5413c63b9c4e11490fa6c3b245304c8135f36500f8193a02974
SHA512

0436df96253f83fc008db84992fcf8c5341451a201652035510d79af9018adf33baae82bfb1d61b458eb3683e8ffddec49a0040db9dcd98c565216adf5bc5bc9
SSDEEP

384:UvBAnw0nQ5vKjr5xD+n8frSn0nN+bSNFHMOyh6iyskE8C62io1RRu0O:UZAfnQ5Y3D+8frRN+bSTHMOyh6jEh62G

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6583932b67ca8a091bf8d845a5420725_JaffaCakes118

Files

6583932b67ca8a091bf8d845a5420725_JaffaCakes118
.exe windows:1 windows x86 arch:x86

570ea5456e65ecf5537b3be86a6d4f50

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetMalloc
StrStrIA
SHEmptyRecycleBinA
Control_RunDLLW
SHGetDesktopFolder
RealShellExecuteExW
SHFileOperation

gdi32

GdiStartDocEMF
RectInRegion
GetDeviceCaps
FloodFill
PathToRegion
PtInRegion
PolyPatBlt
GetTextColor
GetPixelFormat

user32

MessageBoxA
ChangeMenuW
CallMsgFilterW
CreateMenu

Sections

��t
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE