e14312aad51c052e2897d9203d4e0f0d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e14312aad51c052e2897d9203d4e0f0d_JaffaCakes118
Size

175KB
MD5

e14312aad51c052e2897d9203d4e0f0d
SHA1

73f7ce939a21d4dd56d36a984d3a3390edcb6816
SHA256

534b585e33942d318d6f3beff369d9ab5f283b192d7d4174dfe6461ef5767944
SHA512

3a19238ff397efa1761e07c53358a9975c187ade9ccc31993b6ef44b0f8d1cab95f00c92aecc5103329d16862a3ef605ad8b06696371b2ef5b436fdb90ea0399
SSDEEP

3072:1iYlcLaJLRDLjcIiShhm9xLWX3LtSRGK6jUouGYK9/I6vrM:llcsZ4IiVxLWnLtWHfGYK26

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e14312aad51c052e2897d9203d4e0f0d_JaffaCakes118

Files

e14312aad51c052e2897d9203d4e0f0d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

169ff4412a42e0fa59f9e17c1e55ab28

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

L:\uucchNEMgkubDm\xrxoYTPFrB\jyiqnuk.pdb

Imports

user32

DefFrameProcW
ChildWindowFromPoint
GetDoubleClickTime
SetTimer
GetWindowDC
SetScrollRange
wsprintfW
TrackPopupMenu
LoadStringW
GetScrollRange
ModifyMenuW
IsCharUpperW
CharNextExA
HideCaret
MapVirtualKeyExW
IsDialogMessageW
GetClientRect

gdi32

ExtFloodFill
DPtoLP
RoundRect
SetDIBColorTable
GetSystemPaletteEntries
ExtTextOutA

kernel32

lstrlenA
lstrcpyA
RemoveDirectoryA
HeapSize
GetModuleFileNameA
CreateWaitableTimerA
GetModuleHandleA
VerifyVersionInfoW
DeviceIoControl
LoadLibraryA

shlwapi

ChrCmpIW
UrlEscapeA

msvcrt

_controlfp
atoi
_wtoi
__set_app_type
__p__fmode
__p__commode
_amsg_exit
_initterm
_ismbblead
_XcptFilter
memset
_exit
strspn
isspace
_cexit
__setusermatherr
__getmainargs
fflush

Exports

Exports

?CreateDlgMessage@@YGHPAXPADK|U

Sections

.text
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ort
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 144KB - Virtual size: 331KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE