0289eace495af4962d1ab0c76081b9bc_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0289eace495af4962d1ab0c76081b9bc_JaffaCakes118
Size

18KB
MD5

0289eace495af4962d1ab0c76081b9bc
SHA1

587f8263993ff3a5d3766c6c5fa6f5edf09b6ed7
SHA256

1e3302e2a33c31696001f5457c4a9e7e0a16d35b24cf9c8c4cc5b2488070ac30
SHA512

e62e9b476fc4f9ab647f665e46be768a3b54afa42788fda18e804e12cf4d9bc75455c1b2e3edb8d819ce321339c5409032030e7d96d971c9c6988a7d0326fe9a
SSDEEP

192:3Xsv26W91hAz+vLPtjBXLyeYnbMTdkV0IZ6GtC1q:38v50SEV5yeYnbMTJI8G+q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0289eace495af4962d1ab0c76081b9bc_JaffaCakes118

Files

0289eace495af4962d1ab0c76081b9bc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c8e4041836059290524372437e744951

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
CloseHandle
GetModuleHandleA
GetStartupInfoA
GetTickCount

user32

GetClientRect
GetMessageA
DefWindowProcA
SetWindowTextA
GetFocus
DispatchMessageA
DialogBoxParamA
SetFocus
TranslateMessage
CreateWindowExA
BeginPaint
EndDialog
MessageBoxA
DestroyWindow
EndPaint

gdi32

SelectObject
GetObjectA
LineTo
GetPixel
GetStockObject
MoveToEx
GetTextColor
SetPixel
CreateSolidBrush

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ