c275a7b209904fa42fb0f166c6e5d1e5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c275a7b209904fa42fb0f166c6e5d1e5_JaffaCakes118
Size

24KB
MD5

c275a7b209904fa42fb0f166c6e5d1e5
SHA1

284fc180602069d3c1a14ea2645060eaa5b5a6d0
SHA256

354a0f6a7ec10481d061631fd5339d781163b78254e24192a26143f43f199814
SHA512

58d85c33e920b2c68e15fdb4c70e6164b8fd0321f1593fa115a10f2e1a57fa7cf6211851c39cb10c4abe8ca0a7283475e1a3acbf8c380a256c5958d98f709829
SSDEEP

384:9843/8SDR6IpFkncAiU1cDxGWUo+lvB3Wa7eoLF+yHYSXRitMvqfWhHXvhB:mOf6fiU1TWUo+lvBHT+wYcR/vyWHZB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c275a7b209904fa42fb0f166c6e5d1e5_JaffaCakes118

Files

c275a7b209904fa42fb0f166c6e5d1e5_JaffaCakes118
.exe windows:1 windows x86 arch:x86

ad590198dadfbfd64f2d98848ec78741

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

FlashWindow
ChangeMenuW
CallMsgFilterW
CreateMenu

gdi32

FloodFill
PathToRegion
GdiStartDocEMF
RectInRegion
GetDeviceCaps
PtInRegion
PolyPatBlt
GetTextColor
GetPixelFormat

shell32

SHGetMalloc
StrChrA
SHEmptyRecycleBinA
Control_RunDLLW
SHGetDesktopFolder
RealShellExecuteExW
SHFileOperation

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE