b2a976f3e02bf670eb90de8b5884f132_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b2a976f3e02bf670eb90de8b5884f132_JaffaCakes118
Size

14KB
MD5

b2a976f3e02bf670eb90de8b5884f132
SHA1

d374b2783e6f6ae7f25eb1b67038855cb5b6d197
SHA256

65d433e78affe1b9f80d7dffc557e2c1df9ee1a5ed1cce6295bd3f738422fe1e
SHA512

52c1bbec560636d86516dbfb109e9733d767e48d2b38539304d3859a88b870858eba6372fc6c33d8e74c68e5bc80f6247f717b198cd622508c4bc32cd295acb5
SSDEEP

192:lJUSm61VE7tg/fvBbiK9MQl5f6ajmWgmTgvedB4fszhcnMBjX:lJ1d1VJZmWME59qh2Kjkzhcn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b2a976f3e02bf670eb90de8b5884f132_JaffaCakes118

Files

b2a976f3e02bf670eb90de8b5884f132_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5cb32288d80461cc80418665ab52e34c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DestroyIcon
SetMenuItemInfoW
BeginDeferWindowPos
SetRectEmpty
DdePostAdvise
SetWindowsHookA
OemToCharBuffW
SetUserObjectInformationW

kernel32

VirtualProtect
LocalLock
GetConsoleTitleW
GetProcessWorkingSetSize
SetConsoleInputExeNameW
UnregisterWaitEx
GetLastError

gdi32

GdiConvertMetaFilePict
GdiConvertToDevmodeW
EngMultiByteToUnicodeN
MaskBlt
SetWindowExtEx
GdiDllInitialize
EngCreateSemaphore

comdlg32

PrintDlgW
GetFileTitleA

Sections

.text
Size: 4KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE