fade23e151410a1f9cf42048b6cb17fa_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fade23e151410a1f9cf42048b6cb17fa_JaffaCakes118
Size

111KB
MD5

fade23e151410a1f9cf42048b6cb17fa
SHA1

b61bc8fe2d1f2755ba8394c2682c05dc4d5fd2d5
SHA256

191bffeb80674909c9ff5b4f0ea02f795969c6b443c0065e665a26b80e4a0006
SHA512

2ab80a383cf72e27c9b9a727436aa7f3a7059f159f9c765453bf8cae19ce4a033187a9767e77c4b793ffb1ff6b4ea8b7848128b2e4277e58fcff693ae2aea9e3
SSDEEP

3072:lYIKHY8BttL+gkqtSIritjPnQtvuubn+k/+ZGI9I:GIX8TkqSBtjvQtmuB+Z/9I

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fade23e151410a1f9cf42048b6cb17fa_JaffaCakes118

Files

fade23e151410a1f9cf42048b6cb17fa_JaffaCakes118
.exe windows:4 windows x86 arch:x86

97c1770361601ced061f0fcd8b2d5982

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

StretchBlt
SetICMMode
SetRelAbs
ResetDCW
SetDIBColorTable
UpdateColors
SaveDC
TextOutW

shell32

StrRStrIW
SHAppBarMessage

kernel32

ExitProcess
TerminateProcess

Sections

.text
Size: 24KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 150KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE