a453ce55177d944b5852d0e3b73748d0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a453ce55177d944b5852d0e3b73748d0_JaffaCakes118
Size

211KB
MD5

a453ce55177d944b5852d0e3b73748d0
SHA1

de3fddb922e2f646aef1162dc5fe59946968912f
SHA256

147f091ddc477bde630365dff13bbe795f9581182a6a3d09731ada86e5f95de1
SHA512

3ace5ec7fabc263b6a06b08db6b49d0f0a699b741d8e8d891dc295faafe60485cb3560442fbfb0a2d3757b60736f16348db93f02a6b7d1f0a7ec20d363f25194
SSDEEP

3072:dpY6T7MF3h7GED1xGrnwVSH6SzEhoB1W6PvBwA23YRmcDmdu0zhNv++QAw:du+7MF3ccqwar4h96PJwAFUdu0zT++Qp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a453ce55177d944b5852d0e3b73748d0_JaffaCakes118

Files

a453ce55177d944b5852d0e3b73748d0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5f4b003b7d5412bea3309c35cb378480

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetSysColorBrush
IsIconic
IntersectRect
IsChild
IsDlgButtonChecked
InvalidateRect
LoadIconA
GetWindow
IsDialogMessageW

kernel32

GetModuleHandleA
LocalAlloc
ExitProcess
GetDiskFreeSpaceA
GetEnvironmentStrings
GetFileSize
GetCommandLineA
VirtualAlloc

gdi32

GetBkMode
GetObjectA
LineTo
SelectObject

shell32

Shell_NotifyIconW
SHGetDiskFreeSpaceA
SHGetSpecialFolderLocation

Exports

Exports

YlbaHzRa8KZu

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 191KB - Virtual size: 190KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ