75392c088f26128e5bb90db2be80ec94_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

75392c088f26128e5bb90db2be80ec94_JaffaCakes118
Size

43KB
MD5

75392c088f26128e5bb90db2be80ec94
SHA1

f380749eb474198f49f57217bef94c9b8e4f1774
SHA256

180d9e5daa5938b84ceb6ba2115d09dfc4563f709d279c863bc745afb96c2374
SHA512

d8e27decbfea5186ce24b20fa7460bc4f97796862c348ac54de8b683556d177af1e91eb911d2c54c881a1f787154017343230133045db27447d3104ffaf9803f
SSDEEP

768:C9W0QQdP261FE6fOss3gZEnrg78WzGLJKb+2EC7QMN8fJ:Co0QQdO61RfM3aKfKLmJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
75392c088f26128e5bb90db2be80ec94_JaffaCakes118

Files

75392c088f26128e5bb90db2be80ec94_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0c3b140f635b2b5e63e5b4a8dea02e7c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBeep
GetTopWindow
DialogBoxParamA
CharUpperA
CharNextA
DestroyIcon
FlashWindow
GetSystemMetrics
CharLowerA
SetWindowTextA
GetDesktopWindow
GetParent

kernel32

AllocConsole
GlobalAddAtomA
GetLastError
Sleep
GlobalFindAtomA
GetProcAddress
LoadLibraryA
SetLastError
lstrcatA
GlobalDeleteAtom
lstrlenA
GetConsoleCP
FindResourceA
GetCommandLineA
CopyFileA

shell32

ShellAboutA

gdi32

SetTextColor
GdiGetBatchLimit
GdiFlush
DeleteDC

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ