a7e3bbec5b4759f4d4762d38ffe0b830_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a7e3bbec5b4759f4d4762d38ffe0b830_JaffaCakes118
Size

19KB
MD5

a7e3bbec5b4759f4d4762d38ffe0b830
SHA1

7590bb4c0fb1d936863efe51607125cd128d8905
SHA256

b49065fdefe9af67c1ffe8ade3fd4f18b2667ee838da33e1a43dd0cc889fc0a3
SHA512

774549138314d055162d94e04957b684ec0c8d9b481715fe0c0af3944d53abac87eb722f6731ff2109745529d056735fdaa1cbff7eec353cbbdfa01af76719c6
SSDEEP

192:fX4rlV1NNJxTocqMu9Nly2SWqJoKXEccs3fToqSWrU:UzJocFu/WJmS3fEqFrU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a7e3bbec5b4759f4d4762d38ffe0b830_JaffaCakes118

Files

a7e3bbec5b4759f4d4762d38ffe0b830_JaffaCakes118
.exe windows:4 windows x86 arch:x86

71cab448d584f8340afa56a3a6a3d8a9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

PostQuitMessage
DestroyWindow
GetClientRect
DispatchMessageW
TranslateMessage
GetMessageW
CreateWindowExA
DefWindowProcA
SendMessageA
LoadCursorA
RegisterClassA

kernel32

GetStartupInfoA
HeapAlloc
LoadLibraryA
GetModuleHandleA
HeapCreate
CloseHandle
GetModuleFileNameA
GetSystemTime

comctl32

ord17

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 652B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ