89943e7d3ebfc29a1539fa2656a3fa41_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

89943e7d3ebfc29a1539fa2656a3fa41_JaffaCakes118
Size

117KB
MD5

89943e7d3ebfc29a1539fa2656a3fa41
SHA1

14d30a0be22d6e7e6eb259aeac91c3a07f22157e
SHA256

879d6e4cb7042e608b5dd4505faa7df99c1f23620ef6e246820499b2f6d98488
SHA512

c804eae22d4e6d141dd60bb29e9145a0596c5045bb4784f36aff26867fecde8079c53979be8e5720de95398187833fd9ce271c0a877d64f15f8e39291531d394
SSDEEP

3072:rYeorhSvWS69hsemQ3vAkHZJngEqUB0Mke:rvWj5vAk5JnvB0M

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
89943e7d3ebfc29a1539fa2656a3fa41_JaffaCakes118

Files

89943e7d3ebfc29a1539fa2656a3fa41_JaffaCakes118
.exe windows:4 windows x86 arch:x86

721b1982e247d2eda98d261183da6b2f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetBkMode
CreateCompatibleBitmap

user32

GetTopWindow
PostQuitMessage
RedrawWindow
LoadIconA
DrawMenuBar
IsDlgButtonChecked

kernel32

VirtualAlloc
GlobalAlloc
GetProcAddress
ExitProcess
GetCommandLineW
GetModuleHandleA
GetOEMCP
GetThreadLocale

shell32

SHGetFolderPathA
DragQueryFileA
Shell_NotifyIconW

Exports

Exports

6mGqr8@20
DGx6L05qt9Idvy
GwijHI9f
_0hsKdWFQz@12
p2T4oz63J6rU

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 97KB - Virtual size: 228KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ