055c4c16d8316f8afd40df8d00c943ad_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

055c4c16d8316f8afd40df8d00c943ad_JaffaCakes118
Size

123KB
MD5

055c4c16d8316f8afd40df8d00c943ad
SHA1

09c746b9faa260a477ff8c0beda9a78067c905ce
SHA256

f6f8b97bf9069d38a8106562c3873727d6c099998be367ca0311f3d5133c169f
SHA512

79e4e4053ab5b0808f9345e55733e09e084e4b6a2cfb1a521710fb91f23a164c3481a1f9f80c7575b409cbee0fcd47f4639066003c002cd4a35ca588aef24be3
SSDEEP

3072:wFoxZ/SCav85bH3Huz0Gb/0htxuVsYvH51q2lYWSXL+:/F68NeL7Q6X33

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
055c4c16d8316f8afd40df8d00c943ad_JaffaCakes118

Files

055c4c16d8316f8afd40df8d00c943ad_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2f1888e65733077fc51ea72cce1c0771

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetMenu
GetDesktopWindow
GetSystemMenu
GetTopWindow
GetCapture

kernel32

LoadLibraryA
GetDiskFreeSpaceA
GetFileAttributesA
GetFileSize
VirtualAllocEx
GetEnvironmentStrings

ole32

CoFreeUnusedLibraries
WriteClassStm
CoCreateGuid
CoGetObjectContext

gdi32

GetTextColor
RestoreDC
GetRgnBox
GetBkColor
GetBkMode

Exports

Exports

_Rpz1IpYUugFE
_GvJfQ80@12
_imCAgDK2
lAXWQ767Y
0cAXqKBPt@12

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 107KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ