dc0a8f2058a50e3b389af82aa9973f0c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dc0a8f2058a50e3b389af82aa9973f0c_JaffaCakes118
Size

10KB
MD5

dc0a8f2058a50e3b389af82aa9973f0c
SHA1

e76161bc2ba459e04222f4542efaa614bb92c981
SHA256

18e399710723fddf0f5e23a4a24ce859db6fccb5a5d67b239e98e62dcfd26dde
SHA512

feebb247ce86fd9e518df13b6e070d7748a3060dcf712589358e1ba2449ea489fa8aa348943627a0fcc0892ca8c8f5ec380c8a857c8ed64131b54ec8eece1b43
SSDEEP

96:L+tAVOJHAz4qcb83F58S4JhfkbxHFK2mcDK42eBlyBiom/pnNm9otE+IZ0464Kq:L+IEo4qu81JakFUxc+vLb6jooi9O41

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dc0a8f2058a50e3b389af82aa9973f0c_JaffaCakes118

Files

dc0a8f2058a50e3b389af82aa9973f0c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a7ee1a47055d38b7fdc897b9efbfdd4e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetWindowLongW
EnableWindow
DefWindowProcW
CreateWindowExW

kernel32

VirtualProtect
GetStdHandle
GetModuleHandleA
GetModuleFileNameA

d3d9

Direct3DCreate9

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 16KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ