0418abb8485f2f0c56fb4853efe7e85b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0418abb8485f2f0c56fb4853efe7e85b_JaffaCakes118
Size

92KB
MD5

0418abb8485f2f0c56fb4853efe7e85b
SHA1

e29313b55f8d21c6788b20ae64491a8e4d933a8f
SHA256

e6a46b102bdbfcd8d72abd609eb1ef6990ce2f5a7a819c68bdf1dbec00a27b67
SHA512

72ce01ed75642f7e5115f54cdaad2ffe12cc3ed06e098787dd4fb64b077f67d9d88dffa3276ff986e24594916d329b19e80dc5b1a760d603b6d48095d9e6e69f
SSDEEP

1536:W22oHAjV8IPuN60V356bI71xuLnVEXozZaSRaDKbiCah+/:WjKT71x+VEXo1RJaK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0418abb8485f2f0c56fb4853efe7e85b_JaffaCakes118

Files

0418abb8485f2f0c56fb4853efe7e85b_JaffaCakes118
.exe windows:22681 windows x86 arch:x86

85740e3f1e83abd173d12605c169e907

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

GetLengthSid
InitializeAcl
AllocateAndInitializeSid
RegOpenKeyExW

gdi32

SelectObject
StretchBlt
GetTextMetricsW
CreateCompatibleDC
GetDeviceCaps
SetTextColor
CreateCompatibleDC

user32

GetDlgItem
GetSystemMenu
GetDC
DefWindowProcW
ShowWindow
GetSystemMetrics
CreateWindowExW
CreateWindowExW
SendMessageW

kernel32

SetUnhandledExceptionFilter
ExitProcess
VirtualAlloc
lstrlenW
LoadLibraryA
GetModuleHandleA

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 69KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ