eaf92a8f2a67298642a0de266c9f4716_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

eaf92a8f2a67298642a0de266c9f4716_JaffaCakes118
Size

152KB
MD5

eaf92a8f2a67298642a0de266c9f4716
SHA1

e26610522545795e7dacf8e52859635604a9804f
SHA256

da35a9cb8d4c76f66a43671a4931929c5e75f40542d5f71cb2c48da2e5f9f574
SHA512

50b8edcd46b58dd0cbc5fe35d99803ab65abbe9679bcbe17075bb81461639b8d5145aefa50b136769501834da494d0bbadbbe9e6ccdbaacb63794949c1b89b34
SSDEEP

3072:D6vSV+j/Zu/c3BkOlp5LY5V1Qw0JWz2w922QN1GZb:pSue+gk5VKXJWv9yNU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
eaf92a8f2a67298642a0de266c9f4716_JaffaCakes118

Files

eaf92a8f2a67298642a0de266c9f4716_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7d18f9ae51c84345e4308b4ed471b154

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadIconA
GetMenu
IsWindowUnicode
GetDC
GetDCEx
IsMenu

gdi32

CreatePenIndirect
GetBkMode

shell32

Shell_NotifyIconA

kernel32

GetModuleHandleA
LoadLibraryA
VirtualAllocEx
SetErrorMode
SetFilePointer
ExitProcess

Exports

Exports

b9Hy2CQ
__jhVrtu2m1U@20
m64CwpGOHBZOWv
miC3JBe
_i2zOjv@16
_fcX8K7j81w7g@8

Sections

CODE
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 518B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.itdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ