a54a9c02df8da50ba8c4bf9575ed4e05_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a54a9c02df8da50ba8c4bf9575ed4e05_JaffaCakes118
Size

54KB
MD5

a54a9c02df8da50ba8c4bf9575ed4e05
SHA1

d8e59d6e8d6c58ed736931dd4de544a707808faf
SHA256

c3910b1d98740acc57efa17f875e2ac68eed8ab2b5770275e8c59628283bea64
SHA512

d5103062073744bd3362dfb5dfe5a7a9c26e77c1648e6be16adad8f7ebce9491bdeb657c9d94a263dec85eca3d2b8f296f16781d4c418e24ad666f67b14f5fc8
SSDEEP

1536:lzA4h7sJqwa9d2YKZF7F1tDPq/8ODZHrozMybDeM+:lMQiCd2RdDPoBtXQDe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a54a9c02df8da50ba8c4bf9575ed4e05_JaffaCakes118

Files

a54a9c02df8da50ba8c4bf9575ed4e05_JaffaCakes118
.exe windows:5 windows x86 arch:x86

fbcdc2a50d4b5f95ee72443413ed23dc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

N:\uKiHbAdEqrwv\LvxdGqiJq\zxnrAsmgjtgwF\fZMcBayAF.pdb

Imports

gdi32

CreateICW
CreateSolidBrush
CreatePen
GetDeviceCaps
CreateFontW
SetPixel

user32

BeginPaint
GetWindow
PostThreadMessageA
wsprintfA
SendInput
SendMessageTimeoutA
DrawAnimatedRects
CreateDialogIndirectParamW
SetScrollInfo
PeekMessageA
DestroyMenu
SetWindowPos
GetSystemMenu
IsRectEmpty
FrameRect

kernel32

GetHandleInformation
GetModuleHandleA
LoadLibraryW
IsBadCodePtr
GetCommConfig
SizeofResource
MulDiv
RemoveDirectoryA
GetModuleFileNameA

shlwapi

ord158

msvcrt

_controlfp
__set_app_type
__p__fmode
__p__commode
rand
_amsg_exit
_initterm
atol
_ismbblead
_XcptFilter
_exit
_cexit
wcslen
__setusermatherr
__getmainargs

Exports

Exports

?CreateDlgMessage@@YGHPAXPADK|U

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE