8a62fae0dbe2ca2946cd6d724c9596e8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8a62fae0dbe2ca2946cd6d724c9596e8_JaffaCakes118
Size

122KB
MD5

8a62fae0dbe2ca2946cd6d724c9596e8
SHA1

f2e0b489a244b217789c4597ecddba2c94292abe
SHA256

14d45e9ad1948256aa6fe161e0b522c970ebef680f5abbfd505dca59208a54fc
SHA512

2ca19e952e5f662df1347b00325e2cda38b82ea41a303e47fdfb613823d9fa096cf544e1921a56f880252ad2f2653d669798127d2750fc44b933968a9af5ec9c
SSDEEP

3072:9omjB2RL2NWtmppYYAEk2HREZ9go6nQjZt:/B2RqQmrj1Rs76Q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8a62fae0dbe2ca2946cd6d724c9596e8_JaffaCakes118

Files

8a62fae0dbe2ca2946cd6d724c9596e8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5997b5a96df8e9cba7628b7e01fbadea

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Add
ImageList_Draw
ImageList_DragShowNolock
ImageList_GetBkColor
ImageList_DrawEx
ImageList_Remove

gdi32

GetTextColor
SelectObject
RestoreDC
GetBkColor
SetPixel
GetBkMode
LineTo
BitBlt

kernel32

lstrcpynA
lstrcpyA
VirtualAllocEx
LoadLibraryA
WriteFile

user32

DefMDIChildProcA
DefWindowProcA
GetDesktopWindow
GetMenu
GetCapture

Exports

Exports

_gR8TKggqEVb@20
_KpU3ipNF8nq@8
_W8nYYsyqB5vK8A
_cQonnq2h4V@8

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 106KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ