893da83fab852dcad991ab1ffe101c84_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

893da83fab852dcad991ab1ffe101c84_JaffaCakes118
Size

139KB
MD5

893da83fab852dcad991ab1ffe101c84
SHA1

03283132565e68af3313a787a06e855eb1154e96
SHA256

ba4f7fd56741d863115ebb5e5c2a1d3362ad8119107648d9407bb2a36510e793
SHA512

f37d6562421628b7fb141756312f6cdd14eed6e77fb42ea916af6354ef9564f24aad5be55947015f507692c42984604ed146474ba275570b209b2f71634d7f49
SSDEEP

1536:/847Cw27d2vXc5KkiXXX+odS2/f/YKyFgc9RlqrLPkMF7vKFlo5UXfdI:/bs2fcYkinXrrfwKZuoJQa5Am

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
893da83fab852dcad991ab1ffe101c84_JaffaCakes118

Files

893da83fab852dcad991ab1ffe101c84_JaffaCakes118
.exe windows:1 windows x86 arch:x86

9bb1cdbced00285cd7c66b34e6e38926

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ModifyMenuA
FindWindowExA
MsgWaitForMultipleObjects
GetDlgItem

gdi32

SelectClipRgn
StartPage
GetTextExtentPoint32A
CreateCompatibleDC
RectInRegion
CreatePen
CreateRectRgn
SetBkColor

ole32

CoSetProxyBlanket
CoUninitialize

kernel32

GetComputerNameW
GetModuleHandleA
GetStartupInfoA
FormatMessageA
GetNumberFormatA

msvcrt

atol
_adjust_fdiv
_except_handler3
_controlfp
__p__commode
__set_app_type
__setusermatherr
exit
_exit
_acmdln
__getmainargs
__p__fmode
_initterm
memcpy
_XcptFilter

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 127KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 101B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ