b47f5cf10816a669c128c73364cac249_JaffaCakes118 | Triage

Sharing

General

Target

b47f5cf10816a669c128c73364cac249_JaffaCakes118
Size

67KB
MD5

b47f5cf10816a669c128c73364cac249
SHA1

72fff298a3f6b80ab81e9ad4f049283675343ba1
SHA256

b35040f4012349b2dda8b2529b9a94f36989fdb5915dc1d21ca9f7ae5558c285
SHA512

684a5ec63305383820437d7ccc4938eb16fb71d0376cc73347fc9fdc70f96b2f20f2b5195e0d386661b2fb49791d49eb7fb06c91bfef449e0ac593b3f12595e1
SSDEEP

1536:OZUEPk0oway6NGDB/g+C5b80OTPXrBSYnsgWj4PuD:sUD0owa1NQB4+ab8ZPXFdnsFj2uD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b47f5cf10816a669c128c73364cac249_JaffaCakes118

Files

b47f5cf10816a669c128c73364cac249_JaffaCakes118
.exe windows:4 windows x86 arch:x86

017ff6a5b121d29b3cde3b24045bc3b7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CopyIcon
GetDlgCtrlID
ModifyMenuW
LockWorkStation
GetAltTabInfo
UnhookWindowsHookEx

kernel32

GetLastError
VirtualProtect
GetStringTypeW
TransmitCommChar
GetSystemTime
GetWriteWatch
RaiseException

gdi32

CreateDIBSection
DdEntry48
CreateSolidBrush
EnumEnhMetaFile
SetViewportOrgEx

Sections

.text
Size: 3KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 61KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE