e0a8bb8d714be5433ee7bc2c9d9b9331_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e0a8bb8d714be5433ee7bc2c9d9b9331_JaffaCakes118
Size

117KB
MD5

e0a8bb8d714be5433ee7bc2c9d9b9331
SHA1

50a0599bd5d677923ef841e7c8a3ece8ec47558b
SHA256

a3fca6728d6c37ad9aa6e0f902b5d14496de8357c92bbeacc1c18a12e6b9df5e
SHA512

8d465f9265747e1fd071c815bdc599dd1bb5040ee4c006adce3935183d6598a01cd75ea5b6e6cc5bd51c296dcda87cdc828446bf0b6cf2700bd3b70508d67edb
SSDEEP

3072:dCDmGqmcN9GWhgCNX5xQyir2hBRPsRxF:dQmG5C915xyrv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e0a8bb8d714be5433ee7bc2c9d9b9331_JaffaCakes118

Files

e0a8bb8d714be5433ee7bc2c9d9b9331_JaffaCakes118
.exe windows:4 windows x86 arch:x86

84650143d2f8181e49a1f4e326e51133

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetSpecialFolderLocation
SHGetFileInfoA
Shell_NotifyIconW
SHGetFolderPathA

kernel32

GetFileType
LoadLibraryA
GetLastError
GetFileSize
GetFullPathNameA
VirtualAlloc

user32

DrawIconEx
DrawIcon
DrawMenuBar
GetWindow
DrawFrameControl
DrawTextA

Exports

Exports

__BwlHO
W9WV3axpii@24
_Awe0X
MulMKIoA@12
cKYNzM85l
xKFRF9YaBUH
_BrseS8@16

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 874B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 102KB - Virtual size: 213KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data
.rdata
.rsrc/0/DIALOG/TEXTFILEDLG
.rsrc/0/MANIFEST/1
.xml
.rsrc/0/RCDATA/DVCLAL
.rsrc/0/STRING/4094
.rsrc/0/STRING/4095
.rsrc/1033/BITMAP/BBABORT.bmp
.rsrc/1033/version.txt
.text