664aaa0867ff9533e5030da7bff62e3e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

664aaa0867ff9533e5030da7bff62e3e_JaffaCakes118
Size

182KB
MD5

664aaa0867ff9533e5030da7bff62e3e
SHA1

944d88102ae724d426a3f7a9ec6d443f355be3e2
SHA256

dfc1503ec682fadc3a6a3754637bfda4632f02edddded34ee5e54550d49547f6
SHA512

de2cd50d3a8fe783f06126bfe951ba2ca8d3eb0d8b130e30716e49b098666be1ee544c37c78fc8c8558508714bbed4961ed5a35a17856f002407eef90d0ebb99
SSDEEP

3072:j1JLabaqw4bcbKVGOWW/U1NMC8PDud7/LAJB/CAAqpX5eGiLaVZm0jq3nfX5:jTd4bmKGO9sfj0DG7/UJF7Aqt5XiGVZQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
664aaa0867ff9533e5030da7bff62e3e_JaffaCakes118

Files

664aaa0867ff9533e5030da7bff62e3e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

aac55febed86af4f6bc801472f410109

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentDirectoryW

user32

EndPaint
GetMenu

shell32

SHGetNewLinkInfo
StrChrIW
ExtractIconA
ExtractAssociatedIconW

gdi32

GetTextMetricsW
SetSystemPaletteUse
DescribePixelFormat
GdiEntry7
GetTextFaceW

Sections

.code
Size: 9KB - Virtual size: 810KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 169KB - Virtual size: 175KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pack32
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ