ae7bd8e77abd38dac1de1d86ab7bf40c_JaffaCakes118 | Triage

Sharing

General

Target

ae7bd8e77abd38dac1de1d86ab7bf40c_JaffaCakes118
Size

121KB
MD5

ae7bd8e77abd38dac1de1d86ab7bf40c
SHA1

cd9bc9d0846e5e8ab1d738976b48b59154c84c6d
SHA256

308b48870beb355af0d6c907a3ecd15317d5123151540160634ded51c2117fec
SHA512

b848f756b9dd65dade04de85f2330feb2c45f2a3b10ce16575502bc29d74f8b009da89fe008ab4b62a6c8234243bcbba9b713c94c7ef9c3602476a0ffffeab67
SSDEEP

3072:esTMMseOUxij3dRdzNR5wjiIhrAb+ftlavg:esT79RsLdRvHiPeM5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ae7bd8e77abd38dac1de1d86ab7bf40c_JaffaCakes118

Files

ae7bd8e77abd38dac1de1d86ab7bf40c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a3e6ef5765204c2de9ae53320f27619b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringA
CreateFileA
LoadLibraryA
CloseHandle
CreateEventA
VirtualAlloc

user32

SetPropA
SetRect
SetScrollPos
CreateMenu
SetParent

shell32

DragQueryFileA
Shell_NotifyIconW
SHGetFolderPathA
SHGetSpecialFolderLocation

Exports

Exports

oBp6W
_Z5QcfSH
gYAu0M68@16
o9O8A6PZYFu
MWD9CQ8Hcv@12
5K7TUHtYchCP
NCw4GL8a

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 236KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data
.rdata
.rsrc/0/DIALOG/TEXTFILEDLG
.rsrc/0/MANIFEST/1
.xml
.rsrc/0/RCDATA/DVCLAL
.rsrc/0/STRING/4094
.rsrc/0/STRING/4095
.rsrc/1033/BITMAP/BBABORT.bmp
.rsrc/1033/version.txt
.text