afcabdd486660445f110d31622d8dbee_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

afcabdd486660445f110d31622d8dbee_JaffaCakes118
Size

12KB
MD5

afcabdd486660445f110d31622d8dbee
SHA1

ee204b267323a80a4996c67b02983b1c1edb7d6a
SHA256

45ae8cd204fe6aa1bce2b4fa406a5f947485693af48f5e61e0f01c1d9cd7f619
SHA512

064207d6f594d3bb41ddbcee2fb8971b697b5acaa8f33107fea548f0440590d922775d95751fe9b3c1ab592b0df34722ac43e626104ec93f442abb68d7c00d23
SSDEEP

192:PjYqGGdkCJZXrzgym4hnfIj5y92AH8nKcnHnHnqHH8nKcnHnHnqHH8nKcnHnHnqP:bZDdkCJ9i4hfc5y9V8nnnKn8nnnKn8nT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
afcabdd486660445f110d31622d8dbee_JaffaCakes118

Files

afcabdd486660445f110d31622d8dbee_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8f1eb5d14bc359e391515d47d6640ce1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumResourceNamesW
GetDefaultCommConfigW

user32

EnumDisplaySettingsW
DdeInitializeA
GetClassInfoExA

gdi32

CreateColorSpaceW
GetKerningPairsW
DeviceCapabilitiesExA
RemoveFontResourceW

Sections

.text
Size: 6KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data?
Size: 1024B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.��
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 886B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 400B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ