078aee5378b628bda32cdb486d1301a4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

078aee5378b628bda32cdb486d1301a4_JaffaCakes118
Size

196KB
MD5

078aee5378b628bda32cdb486d1301a4
SHA1

5d9b1954c38c0d0510cd5eb970efcea11ece4472
SHA256

968360f43b5b4affb8be3b16e5622619faa9e2e3b57a7a5689226c77caaf10fb
SHA512

f51c64e220908f094809148419215c2810ca931c3d419c6d4cd1081b4ccbac93d196a189f1445e474204166bc4bec0a510bddb6a1011a16fe52f211a8a6014ad
SSDEEP

3072:+l7ba9B+bEwtcDRyMLJqZ9quWM3j6KMslDsURuc3StZECMovcifbhJ8+QfPPcP:+9I+wwWVyMdqSNg6GlDsBcCtmCMovrVP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
078aee5378b628bda32cdb486d1301a4_JaffaCakes118

Files

078aee5378b628bda32cdb486d1301a4_JaffaCakes118
.exe windows:5 windows x86 arch:x86

57f4bb022e1b17e64faaa2b05d4c7963

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathIsDirectoryW

kernel32

GetSystemTimeAsFileTime
LocalFree
GetCPInfo
GlobalFlags
FindClose
GetModuleHandleW
GetComputerNameExW
SetSystemTimeAdjustment

comdlg32

PageSetupDlgW
GetOpenFileNameW

user32

InvalidateRgn
RedrawWindow
GetNextDlgTabItem
AdjustWindowRect
RegisterClassExA
GetCaretPos
InternalGetWindowText
SetRect
CreateCaret
GetForegroundWindow
CreateWindowExA
SetWindowLongW
DispatchMessageW
PtInRect
CopyImage
ReleaseDC

gdi32

ResizePalette
SetDIBitsToDevice
GetDeviceCaps
EnumFontsW
LineDDA
StartDocW
AddFontResourceW

comctl32

ImageList_Draw
CreatePropertySheetPageA
ImageList_Destroy
ImageList_Remove

Exports

Exports

ModifyMutexOriginal@16
SendWindowOld@12
LoadVersionOriginal@8
List@8
EnumListItemOld@12

Sections

.text
Size: 164KB - Virtual size: 163KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ