f5605709b88f4b9ace8337c29da1b378_JaffaCakes118 | Triage

Sharing

General

Target

f5605709b88f4b9ace8337c29da1b378_JaffaCakes118
Size

60KB
MD5

f5605709b88f4b9ace8337c29da1b378
SHA1

d200a2041446d12f3086516f83c375bec432a8af
SHA256

babc36457d3fa6435266c8d598f1f47d2b8348d5c29a4c87527005c2c836333a
SHA512

956e1714e2d2c4d3f56fea63fb1ff95e026f91f572389c97dd75c61c73fe2dfb1af9b8650954e76f16e3c74c349d07933e0ea7ea69e03bdd7434c62305f8a131
SSDEEP

1536:BsgIm1Ia0usczq8e3wx6H6OSb01XjLWU:BsgZ1INcjOpu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f5605709b88f4b9ace8337c29da1b378_JaffaCakes118

Files

f5605709b88f4b9ace8337c29da1b378_JaffaCakes118
.exe windows:5 windows x86 arch:x86

9f0c112cccc57a60a1c7d5489fe535e3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\polBjf\Gorso\dhYeWifk\ktcm.pdb

Imports

user32

CharToOemBuffW
InsertMenuW
IsZoomed
CreateDialogParamW
FindWindowW
SendMessageTimeoutW
LoadAcceleratorsA
GetKeyboardLayout
IsWindowUnicode
GetSubMenu
WaitMessage
GetFocus
SetMenuItemBitmaps

gdi32

GetBitmapBits
SetTextColor
WidenPath
GetTextMetricsW
SetBoundsRect
GetTextColor
CreateDiscardableBitmap
SetLayout
SetDIBColorTable

kernel32

GetFullPathNameA
GetOEMCP
SetFileAttributesW
LoadLibraryExA
AreFileApisANSI
ConvertDefaultLocale
lstrcmpW
OpenFile
GetShortPathNameA
SearchPathA
MultiByteToWideChar
SetCommState

Exports

Exports

?_Vwlgpeasgtuprrytwlpn@@YGJE@Z
?Wsfzsng@@YGMHF@Z
?GhmETbLmf@@YGPAGPAM@Z
?PlmwdomaKfophauBvnZkkt@@YGKHPAI@Z
?AnkNjdLyk@@YGXPAEK@Z
?_Bkrdhw@@YGXF@Z

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ