8745359f68f313a74f412a9134a85c2a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8745359f68f313a74f412a9134a85c2a_JaffaCakes118
Size

814KB
MD5

8745359f68f313a74f412a9134a85c2a
SHA1

26e82745f31728acae344daa913197468104d03e
SHA256

7603649c73fa3509b3a39e655c3ecfbb137b9c2278955a88b988442f16510b68
SHA512

eeb82cb1c7eb974a1a264d3a00efe025c2e426c0477fdeca95b3b585d18966b49e116e6100f9a3e1c63b46edce07e32f1cf9e5f63bca1a3b241c01ce64e86263
SSDEEP

12288:y42ZvXbojq1o6o7fC2mzDwMPOf4eE+CXCWrF0yf7EdTUc2yQVEbnQJq9foEGP:ydc08DC2mzda4eSXDrff78UVyQi5oEe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8745359f68f313a74f412a9134a85c2a_JaffaCakes118

Files

8745359f68f313a74f412a9134a85c2a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

461b534a65922327634e469bf1c5c70d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
LoadLibraryExA
IsDebuggerPresent
FindClose
CloseHandle
lstrlenW
GetStdHandle
GlobalLock
HeapCreate
LocalUnlock
GetPrivateProfileIntA
GetACP
IsBadReadPtr
GetLastError
LocalFree
CreateFileA
GetConsoleCP
CreateFileMappingA
FreeEnvironmentStringsA
CreateEventA

user32

CheckMenuItem
GetDlgItem
GetListBoxInfo
RedrawWindow
GetIconInfo
EndDialog
IsWindow
GetDlgItemTextA
DialogBoxParamA
GetMessageA
GetDC
DispatchMessageA
SetFocus
DrawIconEx

uxtheme

GetThemeMetric
CloseThemeData
EnableTheming
DrawThemeIcon
GetThemeColor

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ