c85905880543a1ddd6df560436038f1e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c85905880543a1ddd6df560436038f1e_JaffaCakes118
Size

184KB
MD5

c85905880543a1ddd6df560436038f1e
SHA1

73657687da8b8765a1753bbf11782a943aa76fdc
SHA256

7bc22d00707506f7e7868c29e9046829985bf62d6e532bc4c73669ff51ee0240
SHA512

b74f8ff8225c79bd5efee16a9f1bfea94dc0fcdd1aed1d15fd49752b4ce02a0e10689f876bce3a187e4d37a2f1cd98b687a0ea9ad4162493369abe9678e03582
SSDEEP

3072:xxM38z3wabZPX20sj62LXR6kOPXJ3Y64kPqx0x5IVspOdY7cQ31:xg8Zu0szDRJOPXJ3wkPVx5WcH3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c85905880543a1ddd6df560436038f1e_JaffaCakes118

Files

c85905880543a1ddd6df560436038f1e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

ce9a1b1434fbf7b78950b248dc44d17e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

P:\vysRizwu\Jwaso\cxvv\xNOes\iQmNnJf.pdb

Imports

gdi32

GetTextExtentPoint32W
GetTextCharsetInfo
GetWindowOrgEx
EndDoc
LineDDA
GetCharWidth32W
CreateRectRgnIndirect

user32

ShowScrollBar
GetDlgItemTextW
GetClassNameW
GetPropA
GetWindowLongW
CharLowerA
DrawFocusRect
ClipCursor
GetUpdateRect
SetMenuItemInfoW
CharPrevW
DrawMenuBar
GetWindow

comdlg32

CommDlgExtendedError
PageSetupDlgW
GetSaveFileNameW

kernel32

CallNamedPipeW
FormatMessageW
SetupComm
LoadLibraryW
GetTimeZoneInformation
AddAtomW
OpenEventW
GetProcAddress
GetACP
SetCommState
lstrcmpiW
GetComputerNameW
IsBadReadPtr
GetSystemTimeAdjustment

Exports

Exports

?odtqRlcjMETgXfXo@@YGMHI@Z

Sections

.text
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 141KB - Virtual size: 221KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 606B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.crt
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ