84e886503fbfaa2e4a6f043cd672ecd9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

84e886503fbfaa2e4a6f043cd672ecd9_JaffaCakes118
Size

57KB
MD5

84e886503fbfaa2e4a6f043cd672ecd9
SHA1

dc048ae85973dd050ad15f5e02f1450c0a9bb456
SHA256

97cf490186cbff48f6435186bc7d1751824c040faa7e431d776b2cd940807185
SHA512

e32bf661f3add047b1538d8c05287bca186e916f6ef42e4efb2361d8acac8d12fa40d6ee42c2d4edafde1b70375bd1a19ab2f802dfacaa105ec9ef774cdab401
SSDEEP

1536:lxQ88nVJZBSEjl4WYFY70cNR5NbgiQRFBT7T:lxEnfNj6WGGNxMVFl7T

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
84e886503fbfaa2e4a6f043cd672ecd9_JaffaCakes118

Files

84e886503fbfaa2e4a6f043cd672ecd9_JaffaCakes118
.exe windows:5 windows x86 arch:x86

a1e14a84e639c17f2bce1fb835b6479d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsWindow
BeginPaint
WindowFromPoint
EndPaint
SetWindowTextA
RegisterClassExA
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA

gdi32

FrameRgn
GetTextColor

kernel32

HeapFree
GetLastError
GetTickCount
GetCPInfo
HeapDestroy
GetProcAddress
FreeLibrary
SetFileAttributesA
GetPrivateProfileStringA
GetEnvironmentStrings
GetFileType
LoadLibraryA
HeapCreate
GetStartupInfoA
HeapAlloc
IsDBCSLeadByte
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection

Sections

.text
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 292B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ