a29fd18e46505043f3039adfd10fb3ab_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a29fd18e46505043f3039adfd10fb3ab_JaffaCakes118
Size

60KB
MD5

a29fd18e46505043f3039adfd10fb3ab
SHA1

daf9d0a0f7bbf372181b16ca052bd33cd74eeb56
SHA256

6409fb38e47df7b47a4c863d27234ea5659ab71ab9cc1bc36b6ed83833767af4
SHA512

408a10efe2f964dc2f09655834e7d6ba60d5d67dfe2bb5b4772fd285276638686c2d0a74d231c95ee4e7d85d267c3aa84da9cd8562bd6fd506233c9010533e2d
SSDEEP

768:7JtUiAYl9g+dCh6dp2sQsQkRqJckpxWZSp08kUB4ed7M4esIS4eQ7zoJObvif:7JqiAnj3N6WWZS683d7MsISf4v

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a29fd18e46505043f3039adfd10fb3ab_JaffaCakes118

Files

a29fd18e46505043f3039adfd10fb3ab_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c1b49daea63061f3654076ae26aeb201

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadIconA
MessageBoxA
PostQuitMessage
RegisterClassExA
SendMessageA
LoadCursorA
SetFocus
SetWindowTextA
ShowWindow
TranslateMessage
UpdateWindow
GetMessageA
GetDlgItemTextA
GetDlgItem
DispatchMessageA
DestroyWindow
DefWindowProcA
CreateDialogParamA
SetDlgItemTextA

kernel32

VirtualFree
SetUnhandledExceptionFilter
GetModuleHandleA
GetLocalTime
ExitThread
ExitProcess
CreateThread
VirtualAlloc

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE