75d4b65ccf05e3d15b1b33a1fe6916d7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

75d4b65ccf05e3d15b1b33a1fe6916d7_JaffaCakes118
Size

57KB
MD5

75d4b65ccf05e3d15b1b33a1fe6916d7
SHA1

a330edf29e2b08e37d0e62a40cb8c8dca58b5781
SHA256

8842d31790a79861aa3456d85e17c3bb259e0f567039693d5f0481606c733394
SHA512

385090cc0bed131ba877c3f53bdbba1e447f2f8cc16935ad9343d3502f6163f618942b80d5c2aa0e126420b9a4b76f37d95a892c7b5ce8a53185c7a5aecdee81
SSDEEP

1536:kIyLakXTGSEK2Q6v9EOMJWD7ODxNeGfodOoP:kIy2kj8u6vPME2DOP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
75d4b65ccf05e3d15b1b33a1fe6916d7_JaffaCakes118

Files

75d4b65ccf05e3d15b1b33a1fe6916d7_JaffaCakes118
.exe windows:5 windows x86 arch:x86

c324cee23f94319548f5ca4c031dcbd3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

U:\OCuwuwft\undshoJIuvM\vzuaQzcyth.pdb

Imports

msvcrt

_controlfp
__set_app_type
__p__fmode
__p__commode
_amsg_exit
putc
iswalpha
_initterm
_ismbblead
_XcptFilter
_exit
_cexit
perror
memset
atoi
__setusermatherr
__getmainargs

gdi32

CreateRoundRectRgn
MoveToEx
SetBrushOrgEx
GetROP2
SetMapMode
GetMapMode

user32

GetLastActivePopup
GetKeyboardLayoutNameW
DialogBoxParamW
GetDC
wsprintfW
SwitchToThisWindow
CreatePopupMenu
ScrollWindowEx

kernel32

CreateSemaphoreW
LoadLibraryA
SetLastError
lstrlenA
lstrcpyW
LoadLibraryExA
FindCloseChangeNotification
lstrcmpiW
FindNextChangeNotification
GetUserDefaultUILanguage
GetModuleFileNameA

shlwapi

UrlGetLocationW
ChrCmpIW

Exports

Exports

?CreateDlgMessage@@YGHPAXPADK|U

Sections

.text
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idir
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 26KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE