090c52323f2060d4fd70dee543b1a7c1_JaffaCakes118 | Triage

Sharing

General

Target

090c52323f2060d4fd70dee543b1a7c1_JaffaCakes118
Size

97KB
MD5

090c52323f2060d4fd70dee543b1a7c1
SHA1

24dd53fae8b5074e7bcf377f1901f4584747a85b
SHA256

9bd7e60c13340ff29e41d8615c1f5ac7a160542e8acbe31a0203c442c5767222
SHA512

b46f9815d6a511865b74156af42a8ade1893e32a94cfe2fbaa4e3ead206d26bad939deb416977ef1045781992f2c8d4a422bac2ae58d20f9948c96104e6137b1
SSDEEP

3072:2Z7+W/Qw9z6qbK61YhbDlAMKtVr1wmRImLzt:2ZIwjOB8tV5wmx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
090c52323f2060d4fd70dee543b1a7c1_JaffaCakes118

Files

090c52323f2060d4fd70dee543b1a7c1_JaffaCakes118
.exe windows:5 windows x86 arch:x86

ca60338c5d2f253ef658a4bd6308d252

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathGetCharTypeW
PathIsRootW
ord29
UrlCompareA
PathIsSameRootA
StrToIntA
StrPBrkA
StrStrIW
PathGetDriveNumberW
UrlGetPartA
StrCmpLogicalW
ChrCmpIW

kernel32

lstrcatA

user32

GetProcessWindowStation
GetActiveWindow
IsMenu
LoadBitmapA
IsCharLowerA
GetClassLongA

Exports

Exports

?FormFactor@@YGXUverifyEw@CA7
?FormWeight@@YGXUverifyEw@CA7

Sections

.text
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.one
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.void
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.zero
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ