0d740872e601430e181bf3710cfc1d38_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0d740872e601430e181bf3710cfc1d38_JaffaCakes118
Size

79KB
MD5

0d740872e601430e181bf3710cfc1d38
SHA1

c6a05dfc36700d727635cf283f1a3584a328e261
SHA256

f5dd44bd6d41e92a1c5e63842a2165c79d3342d3eea1e623afe8abb2dff1140d
SHA512

24eb8e0f6dba3899407a61d1fa885128c6b7d696e52afc424dace92aec13f8fd5c5ad466da159954a01cbf9bd9048653ce6f39581731a569f9cfaf9d9d222d70
SSDEEP

1536:TBZXgwGPdNPRPvHp8ig0gp1VbAuJdVPuzEI6gtcD0OY:lZnEbR8R9zVb9Z+FA0x

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0d740872e601430e181bf3710cfc1d38_JaffaCakes118

Files

0d740872e601430e181bf3710cfc1d38_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e0efd0a344bc1c0daf3197493c46b256

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

swprintf
memset

kernel32

GetTickCount
VirtualProtect

user32

LoadStringW
EndDialog
SetWindowLongW
GetDlgItem
GetDlgCtrlID
SetDlgItemInt
MessageBoxW
DialogBoxParamW
FillRect
PostQuitMessage
SetTimer
GetDlgItemInt
SetDlgItemTextW
GetClientRect
SendMessageW
GetWindowLongW

gdi32

CreateFontIndirectW
DeleteObject
GetStockObject
CreateSolidBrush
SetBkColor

Sections

.text
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 780B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 856B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ