014bb6e3e6479c898c722fb409bcddd4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

014bb6e3e6479c898c722fb409bcddd4_JaffaCakes118
Size

208KB
MD5

014bb6e3e6479c898c722fb409bcddd4
SHA1

88fdd7e4f1a5b36a4a2aa395c38b071f85801eb1
SHA256

ce7443474d36601f42ec943b3c00fc69de156fdc6bf284fd6d07b006c1276258
SHA512

d9f51767f8444982b6d6d1ee7a35f133b193da73164a5ae077d121e7bed4be4544aac2fb172877f7689315ed208c0730c0f39570d5aec61860c8901f5e20bc0c
SSDEEP

6144:Xppp5acPkDjvNmE8i7wJvmK1h8QnZ4evG8VFk:XecPkDLgPuwsK4QnZ3G4k

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
014bb6e3e6479c898c722fb409bcddd4_JaffaCakes118

Files

014bb6e3e6479c898c722fb409bcddd4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3106308ce8dc8df5222d2e17989079ab

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetDIBColorTable
BitBlt
CreateCompatibleBitmap
GetPaletteEntries
GetObjectA
GetTextAlign
GetBkColor
GetBkMode
GetTextColor

comdlg32

GetSaveFileNameA

kernel32

HeapDestroy
lstrcatA
lstrcmpiA
LoadLibraryA
lstrcmpA
VirtualAllocEx
lstrlenA
MoveFileA

user32

GetCapture
OffsetRect
PeekMessageA
GetMenu
PeekMessageW
GetDesktopWindow
PostQuitMessage

Exports

Exports

9Y6rsydKM@16
DaSOJ
_yLHCSc
_mATKF1
_bEm94Q

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 191KB - Virtual size: 190KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ