949e5fdd9c6239c953ea25b6c110b5c4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

949e5fdd9c6239c953ea25b6c110b5c4_JaffaCakes118
Size

119KB
MD5

949e5fdd9c6239c953ea25b6c110b5c4
SHA1

158b645b9de115ff2c1779a1bf47cd3c97dd769b
SHA256

fd893eb73ac999726c34af2276ec1c959c8d4de6ae7f6eff2db7335e830b426c
SHA512

a85adf7b9e2e6fe4a3bef580a08d09589a54c3a35ea2742fe8aae253d0cb3e85047999236caa86788693ffbc5d94bd67d233f9cf439adc48b05abaa8a8d45716
SSDEEP

3072:y7A2UffO3ynOW4HZkxBO3WZuNwaAIs/6mU6GgJ+7LTA:ybGfDOvkxBPwwaS6mdJ6s

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
949e5fdd9c6239c953ea25b6c110b5c4_JaffaCakes118

Files

949e5fdd9c6239c953ea25b6c110b5c4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3f2b57379bf704dd9519e4501a2aad1e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

ReplaceTextW
CommDlgExtendedError
FindTextW
ChooseColorW
GetOpenFileNameW
dwLBSubclass

gdi32

GetEnhMetaFileW
GetFontData
GetMapMode
GetClipBox

Sections

.text
Size: 73KB - Virtual size: 97KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE