02a12c03e63ea042dc2d4a3cf852a31e_JaffaCakes118 | Triage

Sharing

General

Target

02a12c03e63ea042dc2d4a3cf852a31e_JaffaCakes118
Size

140KB
MD5

02a12c03e63ea042dc2d4a3cf852a31e
SHA1

55651ae79e4115ea7c45f8cf3fb8b01a1f12a89d
SHA256

8dfaadc01a9db62c69c602d27a55c9fe7dfbb23556abfbe6ed7e9c8524f7e86d
SHA512

ce3c80d931357be987ce68d450e5270038d5bf6941fe495e59ef8d2df01c6f339e7f82b28fadc05c41b74918cc8dbe0c7617bfe947eb836ec08253859d425134
SSDEEP

3072:Mdyl6ymqPy3tIajrDal1A/Rj5yrJ+oye3+XGHIjFLBJpL25R7cGEFhPZZI:M8Gqq3eYo+/RYrJp3WyE9LAR7oF2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
02a12c03e63ea042dc2d4a3cf852a31e_JaffaCakes118

Files

02a12c03e63ea042dc2d4a3cf852a31e_JaffaCakes118
.exe windows:6 windows x86 arch:x86

de415d16fbb401dbf52729e80c4fdd0f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
LocalFree
GetModuleHandleW
FormatMessageW
VirtualAllocEx
GetTickCount
SleepEx
SetUnhandledExceptionFilter

user32

LoadIconW
GetDC
LockWindowStation
GetWindowRect
GetSystemMetrics

gdi32

GetTextMetricsW
LineTo
GetTextMetricsW
PatBlt
MoveToEx
DeleteDC
DeleteDC
PatBlt
GetObjectW
LineTo
CreateCompatibleDC
GetDeviceCaps

Sections

.data
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 120KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ