d40a0da0b7a8a26bc06d7d312d26fd5c_JaffaCakes118 | Triage

Sharing

General

Target

d40a0da0b7a8a26bc06d7d312d26fd5c_JaffaCakes118
Size

77KB
MD5

d40a0da0b7a8a26bc06d7d312d26fd5c
SHA1

e023e40f3f8ca32950c8976645e9146d75ba31ab
SHA256

f88e478caea9459b344fd530bc2fcd0539724503a08a25efa4111d0b70c38401
SHA512

c3b6e363f897495953538776de7ab0b34875953732d43a3e339ad7228a2a1eed0e9c124b169f41df5c62bd03845810ee8de4824bb11b375d9a575fc66c0a96e0
SSDEEP

1536:eWoJPVjH0DA2hVnb8j5M4UK+MwJ+s633ZqaKn:eWMFkAsFI5W7Ui

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d40a0da0b7a8a26bc06d7d312d26fd5c_JaffaCakes118

Files

d40a0da0b7a8a26bc06d7d312d26fd5c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9e566effe09622c7aafaf787ac56196e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BackupRead
DuplicateHandle
CancelIo
EnumTimeFormatsW
ExitProcess
CommConfigDialogW

urlmon

FaultInIEFeature
GetClassFileOrMime
CoInternetParseUrl
ReleaseBindInfo
URLOpenStreamA

comdlg32

GetSaveFileNameA
LoadAlterBitmap
ChooseColorA
dwLBSubclass
ReplaceTextA

comctl32

DrawStatusTextA
ImageList_DragEnter
DrawInsert

Sections

.text
Size: 48KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 72KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE