082060500d6f52662bd4cb9d5373ea20_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

082060500d6f52662bd4cb9d5373ea20_JaffaCakes118
Size

138KB
MD5

082060500d6f52662bd4cb9d5373ea20
SHA1

2fe6a6c2f475485b0fdb379d6a5b38a2d3553572
SHA256

1ef0591f7e99d088b69e6b20b029875858d96778a7c7c823a023bcc67c7a81c7
SHA512

8094a3f7bc1379b52416bf0235c485f8dbbad06c583b8c4550623ba2ea945e1442c8b4531e0d9c23bbee2f9797cceb82f5ab96eff5382aa7d0cd2f29448d7455
SSDEEP

3072:faB+SY0J90/rVbBvdRu803b/tk9yMJSTUrA2u3Zjz:w+ShJ90z1RG3xWSTdX3h

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
082060500d6f52662bd4cb9d5373ea20_JaffaCakes118

Files

082060500d6f52662bd4cb9d5373ea20_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d53a8be0e055319b49776bc6893af138

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDesktopWindow
CharLowerA
GetWindowLongA
GetMenu
GetParent
CharUpperA
GetWindowRect
GetWindowPlacement
GetTopWindow
LoadBitmapA

comctl32

ImageList_Create
ImageList_DrawEx

shlwapi

PathFileExistsA
SHQueryValueExA
PathIsContentTypeA
SHGetValueA

gdi32

CreateCompatibleBitmap
CreateBrushIndirect
CreateBitmap

kernel32

SetThreadLocale
GlobalDeleteAtom
SetEvent
GetCommandLineA
LockResource
LocalReAlloc
HeapFree
GetSystemDefaultLangID
GetStartupInfoA
GetCPInfo
IsBadReadPtr
GetModuleHandleW
InitializeCriticalSection
GetOEMCP
GetACP
lstrcmpA
LoadResource
GetLocalTime
GetLocaleInfoA
GetProcAddress
GlobalFindAtomA
ExitProcess
FindFirstFileA
VirtualAllocEx
GetModuleFileNameA

Exports

Exports

_1RjcNuaaJ_6@20
YjUStOv0gOr
UCqIWEy@4

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 122KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1004B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ