70e8645424c53634f3c7e71d3826b8e3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

70e8645424c53634f3c7e71d3826b8e3_JaffaCakes118
Size

46KB
MD5

70e8645424c53634f3c7e71d3826b8e3
SHA1

44c6d4ffa7e6f0e93a0e7e65f9f7e29daf9c3a66
SHA256

388000e93ba3f422ab6c73121a346e3996010fdc69af36de743d245ef9bd026c
SHA512

c4de289919cf07bd7ab5b60d22bbdb8f66c3bcaa197e995b8195125cd6abb258c271e46e36b795846566d132fd36fec525e0a86390d0499a5abe6324dfd1554a
SSDEEP

768:QCvls+aL03VpMwVmtDWxluMk2mjXbCvIwZ2Sp7qRHMtJbYCUMWFMmE:VdsOVpMXDWxn/mTa7MSVqRstJkCUMW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
70e8645424c53634f3c7e71d3826b8e3_JaffaCakes118

Files

70e8645424c53634f3c7e71d3826b8e3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1a8e23fafa24bda7e63c82edb4348589

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DrawTextA
DrawTextW
GetWindowTextLengthA
InsertMenuA
CopyRect
GetDC
GetCursor
LoadMenuA

gdi32

ExcludeClipRect
GetClipBox
CreateHalftonePalette
CreateFontIndirectA
CreatePenIndirect
CreateCompatibleBitmap
GetPixel
CreateCompatibleDC
CreateBrushIndirect

comctl32

ImageList_GetIconSize
ImageList_Create
ImageList_DrawEx
CreateStatusWindowW
CreateStatusWindow
ImageList_LoadImageW
ImageList_EndDrag
CreateMappedBitmap
DrawStatusText

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 39KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ