a02b818505eaeb029001f04ef882da03_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a02b818505eaeb029001f04ef882da03_JaffaCakes118
Size

119KB
MD5

a02b818505eaeb029001f04ef882da03
SHA1

98a4799fd6b71b442a3cbe4162c01dc54061eab1
SHA256

63294d4e9463c0d6f9408dc00ea03de6c7305cc568ed89af46df457820545c65
SHA512

dfd34e4af2cc8a733d939a340001e49b897d0c1779f748f982826b2ed57a14e5e8421fa50ab6c0b1abb2ec39579747c57cfd2f479b28ea6c0a8e7320f11e7720
SSDEEP

3072:Subw23QLJzNR/ZmJIxG03YWSAtC1AEHF3XC:SzRRmJgoAtcl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a02b818505eaeb029001f04ef882da03_JaffaCakes118

Files

a02b818505eaeb029001f04ef882da03_JaffaCakes118
.exe windows:4 windows x86 arch:x86

249b0d5016492a44b0bf2b5af11393db

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

DrawStatusTextW
DllInstall
ImageList_GetImageRect
ImageList_SetFilter
ImageList_DrawEx
InitializeFlatSB

kernel32

GetCommandLineA
ExitProcess
CloseHandle
CreateFileA
CreateThread

Sections

.text
Size: 69KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE