b5d37af739d2750ffd0e8a10643c1c52_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b5d37af739d2750ffd0e8a10643c1c52_JaffaCakes118
Size

210KB
MD5

b5d37af739d2750ffd0e8a10643c1c52
SHA1

ab904a4b8dd7cefa063725d1dd3b0afdc48c21a9
SHA256

fbb2d5bec7966368210abbb64296ed4d3a511c50fd1a2ecc51d0c11a29e1b9ee
SHA512

499fa46b8f0fd14223b17ad7fdfd305eb1244c33aa26de28a62dc8ace4e399d43f30f3b8225bdb8755c3ba925e18ab3ad73bc37b9f9167a82fad8767a6c830c9
SSDEEP

6144:O1m7R9CYYaxGrgIzt+6oGuSHoEsPWKic9qcVsYBmUm0:ZN9IKGrHSSHoeNf2BmU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b5d37af739d2750ffd0e8a10643c1c52_JaffaCakes118

Files

b5d37af739d2750ffd0e8a10643c1c52_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d4f200eea0b6a8539336007882b6dc9c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreatePenIndirect
GetTextColor
LineTo
GetBkColor
SelectPalette
GetBkMode
SelectObject

shell32

SHGetFolderPathA
Shell_NotifyIconA
SHGetFileInfoA
SHFileOperationA

user32

DrawTextA
GetDesktopWindow
GetCapture
DrawIconEx
GetMenu
DrawMenuBar
EmptyClipboard

kernel32

EnumCalendarInfoA
DeleteFileA
EnterCriticalSection
VirtualAllocEx
ExitProcess
DeleteCriticalSection
LoadLibraryA
FindFirstFileA

Exports

Exports

1toGHXrNa7
KveK7j@12
_9HldxALADbbX
fIvrjA

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 194KB - Virtual size: 193KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ