039e7d9c31b396e28a6941fb4bfa1b8b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

039e7d9c31b396e28a6941fb4bfa1b8b_JaffaCakes118
Size

208KB
MD5

039e7d9c31b396e28a6941fb4bfa1b8b
SHA1

21808eddfa0a1c7ca1aef5548528ea3322989fe7
SHA256

c0895b8f58a6d0d55ee38b0b7a9d826bf5c9a245ce37c21f3096291f9363386b
SHA512

d0aa5a09da13269ebf7f0682108d1b5ab6ccabd9c843c93e083b4ee4ea732f52fc4c248c6e9e734ff754adb9f2e68364c33b89b5b5fcb85ea287b6053dbe6e94
SSDEEP

6144:Xppp5acPkDjvNmE8i7wJvmK1h8QnZ4evG8VFk:XecPkDLgPuwsK4QnZ3G4k

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
039e7d9c31b396e28a6941fb4bfa1b8b_JaffaCakes118

Files

039e7d9c31b396e28a6941fb4bfa1b8b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3106308ce8dc8df5222d2e17989079ab

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetDIBColorTable
BitBlt
CreateCompatibleBitmap
GetPaletteEntries
GetObjectA
GetTextAlign
GetBkColor
GetBkMode
GetTextColor

comdlg32

GetSaveFileNameA

kernel32

HeapDestroy
lstrcatA
lstrcmpiA
LoadLibraryA
lstrcmpA
VirtualAllocEx
lstrlenA
MoveFileA

user32

GetCapture
OffsetRect
PeekMessageA
GetMenu
PeekMessageW
GetDesktopWindow
PostQuitMessage

Exports

Exports

9Y6rsydKM@16
DaSOJ
_yLHCSc
_mATKF1
_bEm94Q

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 191KB - Virtual size: 190KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ