b6e5321906fa572396f45d2d681b1b88_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b6e5321906fa572396f45d2d681b1b88_JaffaCakes118
Size

190KB
MD5

b6e5321906fa572396f45d2d681b1b88
SHA1

80d08c97002d072b3368f0d188cb6b6b81ce10cf
SHA256

3115021369466b31d5722f11e45966d0f883d3935fcf4f3e1e59aa9c87b33e2d
SHA512

cf9ea47472e66376bccfe53f9db4a33e2a7182dbe83f60cd9e02aa7f138bb973f22eb1d503481f6be630eecb8e51d5b4ed1dcc9dcac8dbdb74dc01c9b4f2948d
SSDEEP

3072:1BZezVMoywJ4Sp3vsJjZT+eXjsFUztnhfTgRmjbwwOulj4R7pm:1kMozh/DeXwFUrfRczK49p

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b6e5321906fa572396f45d2d681b1b88_JaffaCakes118

Files

b6e5321906fa572396f45d2d681b1b88_JaffaCakes118
.exe windows:5 windows x86 arch:x86

43aa8273e6f8f50f077cd72adaabaf77

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

A:\xmjskwi\gqpbj\NOmd\xtybJyq.pdb

Imports

kernel32

SetThreadContext
GlobalFlags
GlobalAddAtomA
GlobalAlloc
GetFileAttributesExA
WaitForMultipleObjects
LoadLibraryW
lstrcmpiW
GetProcAddress
WriteFile
LocalSize
CallNamedPipeW

user32

SetForegroundWindow
CharLowerBuffW
GetDialogBaseUnits
ShowWindow
GetWindowDC
GetScrollPos
LoadIconW
GetWindow
InflateRect
GetWindowLongA
ChildWindowFromPoint
GetClassInfoExW

gdi32

GetROP2
IntersectClipRect
RestoreDC
ExtTextOutA
GetDIBits
GetMapMode
GetTextExtentExPointW
ResizePalette
SetPixel

Exports

Exports

?hZjihxPuqPfCkqP@@YGPADJ@Z

Sections

.text
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 838B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 151KB - Virtual size: 231KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ