a991f40bd4f995e3567320ab0dcd73d8_JaffaCakes118 | Triage

Sharing

General

Target

a991f40bd4f995e3567320ab0dcd73d8_JaffaCakes118
Size

212KB
MD5

a991f40bd4f995e3567320ab0dcd73d8
SHA1

95f6c1fcc271e72a3d1beb199d8172e580a5e5bc
SHA256

49c8d39f69115541d8e147367de84d11d91382ca75bb4d75e546a31d74f2b21d
SHA512

15f731ade0ffc287829f94a997be9675c6cbfe1a8ef57e5bc12a0d2f69b8c34ec4812a8c4fbf36917abbd9bee9c4035a7941a1917deebb0395c56d268f158534
SSDEEP

6144:ljHyXaTC/yvCHquJF3v84/wdLktOngi/S+9Y:hSXr6v2nJBH/wBkAgp+2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a991f40bd4f995e3567320ab0dcd73d8_JaffaCakes118

Files

a991f40bd4f995e3567320ab0dcd73d8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7f6919c0019de133ececab43278eeb46

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
CompareStringA
LoadLibraryA
CreateEventA
VirtualAlloc
ExitProcess
GetCommandLineW
CloseHandle

user32

GetDC
CreateMenu
SetClassLongA
CharUpperA
SetClipboardData
CharNextA
GetMenu
CharLowerA
GetDesktopWindow

Exports

Exports

_YzJWxPYIk@12
_1kWq6RHTf5zXY
_Lwd6l
Q5bYx9gCUj@20
CQWJqidvrzM@24
_6WLSb8gdsn8w@4
_H7L3QopPq@16
_h3t7fH5FM4
_TtzORjqI041btu@12
b31kb@24
_nJUT5VQz
_wFCW1vjyOXn@12
_g_OSdMpt@24

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 192KB - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data
.rdata
.rsrc/0/DIALOG/TEXTFILEDLG
.rsrc/0/MANIFEST/1
.xml
.rsrc/0/RCDATA/DVCLAL
.rsrc/0/STRING/4094
.rsrc/0/STRING/4095
.rsrc/1033/BITMAP/BBABORT.bmp
.rsrc/1033/version.txt
.text