7307d7be5fbf03e873a904e07e4cc12d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7307d7be5fbf03e873a904e07e4cc12d_JaffaCakes118
Size

152KB
MD5

7307d7be5fbf03e873a904e07e4cc12d
SHA1

6f4bc8d2a6f733fce6b9268ea3acbdf242abe008
SHA256

58bc9b96ae5d6369f20974377883a9c31e9b45cd02b4fb9e209976d019edd2c9
SHA512

128cb10d492163257f30beeb9d2b198836b919bbd4793822bd198b3713425dce6273c72d3368e238ee2db9a8af1d40ea3dc92fbe4d5d06344780531f496eb4af
SSDEEP

3072:jzuIJbLEb5bGDCUJUctix4iiOiPYIySNINTC77RvibqYhLyN2yzX:jzuIJbLM8DCUUcnddYf5WRvi5i

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7307d7be5fbf03e873a904e07e4cc12d_JaffaCakes118

Files

7307d7be5fbf03e873a904e07e4cc12d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

ddcbe0d12d937e37faa459df819ad91d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
VirtualProtect
HeapDestroy
GlobalAlloc
ExitProcess

user32

EnableWindow

comdlg32

ChooseFontA

ole32

CoTaskMemFree

msvcrt

_except_handler3

Sections

.text
Size: 85KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 447KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.stls
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 780B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ