062f50d41906e4bc210249d81eb99ae8_JaffaCakes118 | Triage

Sharing

General

Target

062f50d41906e4bc210249d81eb99ae8_JaffaCakes118
Size

60KB
MD5

062f50d41906e4bc210249d81eb99ae8
SHA1

ad66bb49575ed7c58323ece3cb87136930d3a25b
SHA256

ef6ccf144ef59f34eecdcb64231609ba96a3da804da34997d52ef84c52b783fe
SHA512

93ba34fb412687a47628a6740f0ec402e2c50a26657b6d9932d39fa116b570405bf90bfe35e6a512365d5dbfb3c6274084408797b04aaef7456d81a26fc32cd5
SSDEEP

1536:mQrYkvYLIFpwUBi3YdJtYOC8tPMIU5gZJBr7eAMkG6+mn:1YkvkEpziId4joMZ5gZ37e3rk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
062f50d41906e4bc210249d81eb99ae8_JaffaCakes118

Files

062f50d41906e4bc210249d81eb99ae8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

931e3a14616814e7ec9d30c8c4a57026

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetMenu
IsCharLowerA
GetDesktopWindow
GetCapture
DrawAnimatedRects

comdlg32

GetSaveFileNameA
GetOpenFileNameA
FindTextA
GetFileTitleA
ChooseColorA

kernel32

lstrcpynA
LoadLibraryA
ExitProcess
WriteFile
lstrlenA
VirtualAllocEx

gdi32

GetTextColor
CreateCompatibleBitmap
GetBkMode
GetBkColor

Exports

Exports

_DxudBJ
_BaoClaviUjD4k@20
_cx4oUyy6m@16
2hsl7U4_nB@16
b1J2B@24
bU1vC@20
YqlR6aDLnLI5Sr@8

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ