b91af62c9392545aa8fb410c0a809bed_JaffaCakes118 | Triage

Sharing

General

Target

b91af62c9392545aa8fb410c0a809bed_JaffaCakes118
Size

54KB
MD5

b91af62c9392545aa8fb410c0a809bed
SHA1

0d0a11b5fe7460a70ec2c2c210026f3de4224fb5
SHA256

7cf362643ecd51e7b12364f56a0f5d4af33daa2091dbf4ab7efa2ac28fc5573e
SHA512

31d162e7cce51995ec25c322ba4f2fd5cae9b7212ab89ce5ba8d5e363a83e57250afad0e431b11232a9ff92cec22120e660169c57786dfcd3fff00d622d404c1
SSDEEP

1536:XczuLi8OZxlZ8C8XOsj26gVHELhhX5HPNBZL9NXM5:szQi827Z2XOa21VHEVfvN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b91af62c9392545aa8fb410c0a809bed_JaffaCakes118

Files

b91af62c9392545aa8fb410c0a809bed_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4aeb117ecfb9f5fa155d37db2170c88c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowTextA
LoadMenuA
CloseWindow
IsWindow
GetWindowTextLengthA
DialogBoxParamW
EndDialog
DialogBoxParamA
LoadCursorA
InsertMenuA
GetDC
GetCursor
GetDlgItem
DrawTextA
GetFocus
GetMenu
CopyImage
IsMenu
DrawIcon
CreateIcon
DrawIconEx
CopyRect

kernel32

GetCPInfo
lstrcpynW
GetVersion
lstrcpyA
GetStringTypeW
GetCurrentProcess
GetStdHandle
lstrcatA
GetStartupInfoA
GetStringTypeA
CreateFileA
WriteFile
GetFileType
GetCommandLineA
lstrcpynA
TerminateProcess
SetHandleCount
GetModuleFileNameA
LCMapStringW
GetACP
LCMapStringA
MultiByteToWideChar
SetFilePointer
GetOEMCP

comctl32

ImageList_DragEnter
ImageList_DrawEx
ImageList_GetIconSize
CreateToolbarEx
ImageList_LoadImageA
CreateStatusWindowW
ImageList_EndDrag
DrawStatusTextW
ImageList_AddIcon
ImageList_GetIcon
CreateToolbar
ImageList_LoadImageW
DllGetVersion

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 17.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ