ba7fb8486e5006472d9e5f2738035f7d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ba7fb8486e5006472d9e5f2738035f7d_JaffaCakes118
Size

62KB
MD5

ba7fb8486e5006472d9e5f2738035f7d
SHA1

7336b1c96f034f77e381577002fb8219d6d92d8a
SHA256

bda212d4fd9ea8b4472fbdf2ae67e6e67625e561ec5cdb1a41774929897b16eb
SHA512

06b434021aa52daacbef296939af222ec36b09e44381a67daed2614958e6243f303da5a5692e56854c1b88927d1f8891745c5fba199d2efa65f938ebc4387a78
SSDEEP

1536:mQrYkvYLIFpwUBi3YdJtYOC8tPMIU5gZJBr7eAMkG6+mN:1YkvkEpziId4joMZ5gZ37e3r2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ba7fb8486e5006472d9e5f2738035f7d_JaffaCakes118

Files

ba7fb8486e5006472d9e5f2738035f7d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

931e3a14616814e7ec9d30c8c4a57026

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetMenu
IsCharLowerA
GetDesktopWindow
GetCapture
DrawAnimatedRects

comdlg32

GetSaveFileNameA
GetOpenFileNameA
FindTextA
GetFileTitleA
ChooseColorA

kernel32

lstrcpynA
LoadLibraryA
ExitProcess
WriteFile
lstrlenA
VirtualAllocEx

gdi32

GetTextColor
CreateCompatibleBitmap
GetBkMode
GetBkColor

Exports

Exports

_DxudBJ
_BaoClaviUjD4k@20
_cx4oUyy6m@16
2hsl7U4_nB@16
b1J2B@24
bU1vC@20
YqlR6aDLnLI5Sr@8

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ