deb16613525020711e3bd921bd907eaa_JaffaCakes118 | Triage

Sharing

General

Target

deb16613525020711e3bd921bd907eaa_JaffaCakes118
Size

172KB
MD5

deb16613525020711e3bd921bd907eaa
SHA1

97c0c6245e9b8efbe8b76f5f8ee551f56a5cc24e
SHA256

2439bc03616ec3e479c0b6d9f19c761b68c08746ac53851458af63cfcf9a5055
SHA512

1da35aeb1ca214f38e634e24608b4c27c6e5d8793ba499e218c1322467040ae63dffc4bf301e0fdd82ae4571796b49dc100cae8778d4f0f42d4ad91281c76c81
SSDEEP

3072:5nWIpOWVHxwu/fUywOyepvE8sKENtpo/0S2GTMjzFb8NWHBf4Fx6GLhnVDzZ/QDY:ldOCCu/fUywEvE8sbHpo/NMXFBqFx6Gv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
deb16613525020711e3bd921bd907eaa_JaffaCakes118

Files

deb16613525020711e3bd921bd907eaa_JaffaCakes118
.exe windows:5 windows x86 arch:x86

6de177141e6166f76823ba3e0544fe08

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

J:\NShriIrw\ikbgjRsZufI\jwkzaIiQBKazi.pdb

Imports

gdi32

SetWindowOrgEx
CreateCompatibleBitmap
SetPaletteEntries
ExcludeClipRect
AddFontResourceW
EndPage

kernel32

FindFirstFileW
GetModuleFileNameA
LoadLibraryA
HeapValidate
lstrlenA
GetPriorityClass
GetCommProperties
TryEnterCriticalSection
CreateFileMappingA

shlwapi

ChrCmpIW
StrCmpIW
UrlGetLocationW

user32

wsprintfW
SetWindowRgn
LoadBitmapW
BeginDeferWindowPos
IsCharUpperW
GetKeyNameTextW
EndDialog
GetWindowDC
GetKeyboardLayout
DispatchMessageA
UpdateWindow
wvsprintfA
SetParent
BringWindowToTop
mouse_event
GetClassLongW
LoadCursorA

msvcrt

_controlfp
__set_app_type
__p__fmode
__p__commode
_wtoi
_amsg_exit
fgets
_initterm
_ismbblead
iswalpha
_XcptFilter
_exit
_cexit
__setusermatherr
__getmainargs
memset

Exports

Exports

?CreateDlgMessage@@YGHPAXPADK|U

Sections

.text
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ort
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 141KB - Virtual size: 327KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE