a74f6c8529d02ad53dc90b39f8dbe4b5_JaffaCakes118 | Triage

Sharing

General

Target

a74f6c8529d02ad53dc90b39f8dbe4b5_JaffaCakes118
Size

129KB
MD5

a74f6c8529d02ad53dc90b39f8dbe4b5
SHA1

e71b0f3035a6c85a31038d313c085543fc319652
SHA256

82b56c81a89843da60e7cb877bf438599abbe2a16f873842c95ae80ce67d941b
SHA512

016719d59b8a7cf000a800af497494162a78f625200c1f89ab43a5011a0a627a96aa6ba82a83f9b766ae148824a3433ae29c949b6579a0690af968bed8a7aaa1
SSDEEP

3072:fw4lL9EFIcOlHdLztrPU7tWpxYlY94kUNqvVokGa:fw4lhEFP+9LRCWYlY9rWUVok7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a74f6c8529d02ad53dc90b39f8dbe4b5_JaffaCakes118

Files

a74f6c8529d02ad53dc90b39f8dbe4b5_JaffaCakes118
.exe windows:5 windows x86 arch:x86

63829325d252a871595a0586f2292f78

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

L:\wclM\nCdmbXdt\wAxkOlq.pdb

Imports

user32

GetCaretBlinkTime
SetMenu
InvalidateRect
GetIconInfo
wsprintfA
IsCharLowerA
GetMonitorInfoW
AppendMenuA
OpenDesktopW
SystemParametersInfoW
CharNextW
OpenInputDesktop
DestroyMenu
GetActiveWindow

gdi32

GetDIBits
GetTextExtentPointA
GetPixel
GetTextColor
SetBitmapDimensionEx
GetLayout
DPtoLP

kernel32

FindNextChangeNotification
ConvertDefaultLocale
CreatePipe
IsBadWritePtr
SetTimerQueueTimer
WaitForDebugEvent
lstrlenA
IsValidLocale
lstrcatA
GlobalCompact
GetStartupInfoW
GlobalLock

Exports

Exports

?zIzcaNokbgviOh@@YGFKD@Z
?uWjowjwuchHUh@@YGMPAD@Z
?jPjkQyrdjuxrrkriy@@YGJPAK@Z
?UIBrqkOmeYsquLpvy@@YGFI@Z
?VkpqCtgJvP@@YGHK@Z

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 290KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ