ba4f061fa04dfa86c2d99a851d1e0270_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ba4f061fa04dfa86c2d99a851d1e0270_JaffaCakes118
Size

15KB
MD5

ba4f061fa04dfa86c2d99a851d1e0270
SHA1

58316cd6fe2cbe266b6d8e5051eb1d7fa0a795e9
SHA256

e187a737def6a42c0a13ed0f23df38364442a574b4e61701f116ef5594a3a785
SHA512

49583f9cbcdfaf70c79e601b6da28f0e85dbfcf0f27d6cd4fe5631b5d409baff46918e47778e642f52f4368fc5953c0413750dde1306d7e5bed4fc72c3f86a17
SSDEEP

192:MxQTMlrtgdbuMierquiZP1oynXkI6iKeg8rP1oynE/:MxQTMRtIbuNyq3l1Jh6i/g8z12

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ba4f061fa04dfa86c2d99a851d1e0270_JaffaCakes118

Files

ba4f061fa04dfa86c2d99a851d1e0270_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5e8c3a6c06d622e856ee0ea4bed2443b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileSize
CreateFileA
SetFilePointer
EndUpdateResourceA
FreeLibrary
EnumResourceNamesA
UpdateResourceA
BeginUpdateResourceA
ReadFile
WriteFile
CopyFileA
LockResource
LoadResource
SizeofResource
FindResourceA
FreeResource
GetModuleHandleA
LoadLibraryExA
CloseHandle
GetStartupInfoA

user32

InvalidateRect
CheckDlgButton
PostQuitMessage
DialogBoxParamA
BeginPaint
IsDlgButtonChecked
MessageBoxA
SetDlgItemTextA
GetDlgItem
EnableWindow
EndDialog
DestroyWindow
LoadIconA
SendMessageA
EndPaint
GetDlgItemTextA

comdlg32

GetOpenFileNameA

shell32

DragQueryFileA
DragFinish

comctl32

ord17

msvcrt

realloc
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
time
srand
rand
free

Sections

.data
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ