048643914ce5a639365cdc4c1630799c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

048643914ce5a639365cdc4c1630799c_JaffaCakes118
Size

115KB
MD5

048643914ce5a639365cdc4c1630799c
SHA1

fb860be3062f8128d93e40852f5421c2fd423665
SHA256

fb5119fa779d51cd37f32da81cae95e10603656fd35f07a1cfe44b0b81ad81d1
SHA512

801b3210df7b73087d63df0fdb12ee9d3f5be38ef457418c43d7ddf488d271128239d513d047781904ad99759d01886cb4923978ba8f5d314862cf915a535669
SSDEEP

1536:JBeVsIGk62WvRNh77Q3fL11VXoJGnDTRCLWO3qw64OCZIx07igPZOYqoB:JBgs2WNVQvL1jYYnDTATawjZiioYB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
048643914ce5a639365cdc4c1630799c_JaffaCakes118

Files

048643914ce5a639365cdc4c1630799c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b0398d4508d3bda018d686f99c29179f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetTimer
SetWindowLongW
SetWindowPlacement
CharNextA
SetWindowLongA
SetScrollRange
IsDlgButtonChecked
OpenIcon
CharLowerA
CharUpperA
GetWindowDC
SetScrollPos

kernel32

GetProcessHeap
GetLocalTime
GetOEMCP
GetFullPathNameA
ExitProcess
lstrlenA
VirtualAlloc
LoadLibraryA
GetLastError

gdi32

CreateBrushIndirect
CreateDIBSection
GetDCOrgEx
GetTextColor
SelectObject
GetClipBox

Exports

Exports

oJ4XQ@24
_VaYpOO@20
_9ouYRilUrc08bE@16
_rSXKWX

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 1002B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 95KB - Virtual size: 230KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ