bd9d88241a5707798425fdedfd378152_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bd9d88241a5707798425fdedfd378152_JaffaCakes118
Size

318KB
MD5

bd9d88241a5707798425fdedfd378152
SHA1

6648e5bb089f5e3045e262d76c6d22a6760f83c2
SHA256

3696ac21e45a951f5bbf2a005ed30082236017ad8f2c0e615d08fe1ece30822a
SHA512

88d88af7dad992abb02dc2c16006176e70bb957303085de278a82ab9abde7abcf09c57310d179ae45f27df43bb8fc175ef33c7b01766a67751cdb1ec6d93499a
SSDEEP

6144:u0We0QVoVRvrGnk63p1kEqW1lzomGxZlyKRY:HWe0QVyKk6Z1kVClOZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bd9d88241a5707798425fdedfd378152_JaffaCakes118

Files

bd9d88241a5707798425fdedfd378152_JaffaCakes118
.exe windows:4 windows x86 arch:x86

46f2c7701a4618689ecf87d4756f4bb0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetTimer
SendMessageA
PostQuitMessage
MessageBoxA
KillTimer
GetDoubleClickTime
GetDlgItem
EndDialog
DialogBoxIndirectParamA

kernel32

MultiByteToWideChar
GetVersion
lstrlenA
lstrcpyA
lstrcatA
WriteFile
Sleep
CloseHandle
CreateFileA
ExitProcess
FindResourceA
FreeResource
GetModuleHandleA
GetProcAddress
LockResource
GlobalAlloc
GlobalFree
LoadLibraryA
LoadResource
SizeofResource

comctl32

InitCommonControls
GetMUILanguage

shlwapi

StrStrA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 934B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 299KB - Virtual size: 298KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE