89bdb11a11934c3c45090df768d0ebc7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

89bdb11a11934c3c45090df768d0ebc7_JaffaCakes118
Size

55KB
MD5

89bdb11a11934c3c45090df768d0ebc7
SHA1

e16d00c9a713fd5c8ab09a7def9af0e5d25dc572
SHA256

e31a042d47854e9cd1c542ca77bd773ab118a1fe0740e6fb4f024a84db847381
SHA512

6abed4415568fa911a1f52f7c6ef6ac3e68125047dc1983007837aec87263820ff1755b7202e65091a7e1e426aad2fc483fb6e8ed00c872ee2412002f561b656
SSDEEP

1536:5MgTKbjyb/uKy/WWceMc0XerhMSCiY3Iky3Bl:5MQK/ybNbXeV1c9y3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
89bdb11a11934c3c45090df768d0ebc7_JaffaCakes118

Files

89bdb11a11934c3c45090df768d0ebc7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a3ba3aad4669b0443662f93306e8ab87

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersion
GetACP
GetModuleFileNameA
GetStdHandle
SetFilePointer
lstrcpynA
GetStartupInfoA
GetStringTypeA
lstrcatA
lstrcpynW
GetFileType
LCMapStringA
GetOEMCP
MultiByteToWideChar
CreateFileA
GetCurrentProcess
GetStringTypeW
SetHandleCount
WriteFile
GetCommandLineA
lstrcpyA

user32

DialogBoxParamW
LoadMenuA
DrawTextA
CopyRect
CopyIcon
GetDC
EndDialog
DrawTextW
CopyImage
IsWindow
DialogBoxParamA
GetWindowTextA
InsertMenuA
GetDlgItem
GetCursor
DrawIconEx
CreateIcon
CloseWindow
LoadCursorA
GetMenu
GetFocus
DrawIcon
GetWindowTextLengthA

comctl32

CreateStatusWindowW
CreateToolbar
ImageList_EndDrag
DrawStatusText
CreateUpDownControl
ImageList_Add
DllGetVersion
InitCommonControls
ImageList_Create
ImageList_GetIconSize

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 17.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ