fe4753f63f7056d4ff2bbae1684bf2ef_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fe4753f63f7056d4ff2bbae1684bf2ef_JaffaCakes118
Size

139KB
MD5

fe4753f63f7056d4ff2bbae1684bf2ef
SHA1

2d45342dda3a6f03827c7cd339e0d5ea1f82a263
SHA256

b2eebb63f79112a0813a979f3307dc56a7e696e18f32a83385613e69eb81da69
SHA512

2c0b3a46ef446c001445e39369edaa6543c5fde488ae0157a40506d3b3cb426be5c5fe234ba6c6c20c70090ed6c31ea78056e7b3b30d8bab269331eb9d314668
SSDEEP

3072:bqkwlFNtlCRoLq0sldoQlO0nHQUrAsrf96rRgDv:b/wltIRoeHl6Q0k99r10g

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fe4753f63f7056d4ff2bbae1684bf2ef_JaffaCakes118

Files

fe4753f63f7056d4ff2bbae1684bf2ef_JaffaCakes118
.exe windows:5 windows x86 arch:x86

3a02b2ef802a8bb8888a6bf4d49be7ce

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

W:\zwrQwxkh\umRTqjih\rnbkyXOb.pdb

Imports

user32

LoadImageA
SetCursor
GetMenuDefaultItem
RemovePropA
LookupIconIdFromDirectory
EnableWindow
AdjustWindowRectEx
CheckDlgButton
DestroyCaret
DialogBoxParamW
LoadMenuA
wsprintfW
GetActiveWindow
DeleteMenu

kernel32

CancelWaitableTimer
GetCommandLineA
ReadFile
GetACP
IsBadCodePtr
GetCommTimeouts
GetBinaryTypeA
lstrlenW
SleepEx
GlobalSize
LockResource
GlobalGetAtomNameW

shlwapi

StrCatBuffW

gdi32

RectInRegion
RoundRect
SelectObject
SetDIBColorTable
CreatePolygonRgn
GetROP2
GetFontData
PolyBezier
CreateFontIndirectW

Exports

Exports

?mbxstiNezjqpjtyzs@@YGEF@Z

Sections

.text
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.edata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 922B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ