07c262e858c6bd26374d25ddb1f219ef_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

07c262e858c6bd26374d25ddb1f219ef_JaffaCakes118
Size

272KB
MD5

07c262e858c6bd26374d25ddb1f219ef
SHA1

e8af3d3ed6b12eb6e41a02ad5a54195a7e146965
SHA256

09ccd55638611b89bc8e6af4eb1a556845a9f1c66739540c1465fdf15274d456
SHA512

d3836ca3d5b87510321c6ccf36d407f3d2b49928ba8a72ca4f9926c5117a25176b271f3992c5bdaee35bf04eac0ec0c9f328fbdcae66520b8625c9e4da28dfc7
SSDEEP

6144:WXHnQYtHzhNGAv67b0wenrY4eXYlHA7UPzGmEJjoW:IH1ttNNA94eXWHA7UiKW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
07c262e858c6bd26374d25ddb1f219ef_JaffaCakes118

Files

07c262e858c6bd26374d25ddb1f219ef_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e0be1a85f28154683738ed50f8c80f50

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EnumWindows
CreateDialogParamA
EndDialog
IsDialogMessageA
FillRect

kernel32

GetModuleHandleA
GetStartupInfoA
LoadResource
FreeResource
LockResource
ExitProcess
TerminateProcess

Sections

.text
Size: 133KB - Virtual size: 133KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 332B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ