002bbceec61714113dab460260902f16_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

002bbceec61714113dab460260902f16_JaffaCakes118
Size

92KB
MD5

002bbceec61714113dab460260902f16
SHA1

7bfe49d90b94f020ec6255bffa1e566ce885f73f
SHA256

e7945d76eeffeb9d7299c814c946fd6649f6622ad22b269a131b6c21711d82c9
SHA512

7130301e5a508c6468215d2ddfc403b36bda1e19680653a1b299c619a31b2b427451ab3cf2ef7f4a2d6decb918574fc7a73d3d0a8f5b331c86d48c59735098fb
SSDEEP

1536:ENLekEqYM2LiHdzw7m1cxfsq7YkCiHU+A+87VW8vi33n75OX+l6VNjwXpHVw6gO2:mTEqa0wK1xibA+8pW8vinn75Oai+5H6b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
002bbceec61714113dab460260902f16_JaffaCakes118

Files

002bbceec61714113dab460260902f16_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c91f3f678cde4277b32110adee176431

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DrawStateA
DestroyCursor
DefDlgProcA
CreatePopupMenu
CreateDialogIndirectParamA
CreateAcceleratorTableA
CopyRect
CopyImage
CharToOemBuffA

kernel32

GetPrivateProfileStringA
lstrlenA
lstrcpyA
lstrcmpiA
TlsSetValue
TlsGetValue
TlsFree
SetEndOfFile
SetCurrentDirectoryA
RtlUnwind
EnterCriticalSection
EnumResourceTypesA
ExitProcess
GetDateFormatA
GetFileSize
GetTimeFormatA
LoadResource
MapViewOfFile
ReadFile

Sections

.text
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE