b7738298847291a32abd2975751879a4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b7738298847291a32abd2975751879a4_JaffaCakes118
Size

119KB
MD5

b7738298847291a32abd2975751879a4
SHA1

b34196c161318572df7a43bff595c5b74cd7a24b
SHA256

ce383cb444338e1ce34892b67ba9253693e5b4f0f30b56dd3a6843bd43251e54
SHA512

b43cc0ced937f6b0f08099fdd6e2bbbc0a59196f37547ef84ff080b4fe6d0f6d8cc19554989b1617f20c7ee467a7e4c9752029d769348864dc6835bfa4d96c36
SSDEEP

1536:L2Pt3ltU3tqVsdRhecPp7VI5uGAtZCPzORDxF8LdofJSZ/iq1HkHmf50o+AJtWbx:6PdltYMwGuRUxLKf6aq1EHmpvGQoJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b7738298847291a32abd2975751879a4_JaffaCakes118

Files

b7738298847291a32abd2975751879a4_JaffaCakes118
.exe windows:5 windows x86 arch:x86

a45ad8db160fc619707ace2bf706bb40

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

Z:\ltwrt\JEVyswMk\Iwrp.pdb

Imports

user32

GetUpdateRect
LoadAcceleratorsA
BringWindowToTop
RegisterWindowMessageW
DrawTextA
GetCursorPos
GetDlgCtrlID
SetCursorPos
MoveWindow
GetDoubleClickTime
AppendMenuA
GetDlgItem

kernel32

FindResourceW
GetThreadTimes
LoadResource
GetCurrentThreadId
HeapUnlock
GetLastError
VirtualAlloc
SearchPathA
CreateFileA
ReleaseMutex
SetFileApisToOEM
GetSystemDirectoryW

gdi32

LineDDA
EndPage
GetPixel
GetViewportOrgEx
CreatePalette
SetPixel
RestoreDC
SelectPalette
SetBkMode

Exports

Exports

?jMvlrRcohCeqvbuzewZNG@@YGPADK@Z

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 155KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xdata
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 1004B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ