117db4ca07054a5a28ee7c50df024720_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

117db4ca07054a5a28ee7c50df024720_JaffaCakes118
Size

168KB
MD5

117db4ca07054a5a28ee7c50df024720
SHA1

b67fe51da574161b99d1b0490a5bf8385cedd34b
SHA256

8e084a5f38cab6c6d6cdaceaf604f310c5276c693b4a56229ae8262960d99257
SHA512

f9b60a7ba26247d7e9b51adfbfa2a8ef365309a587eac848fc9a43544d44b0d99cbfdad3c65283c7492ccd612efea520e8beb38694fe1a99376bb0617456266a
SSDEEP

1536:QbyI3TNLJ/d0Yu7FBTVQA4RALHaCu1yAcQYVfRFypO:cJNJ/2Yu5B0ALaCfDR8A

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
117db4ca07054a5a28ee7c50df024720_JaffaCakes118

Files

117db4ca07054a5a28ee7c50df024720_JaffaCakes118
.exe windows:4 windows x86 arch:x86

023fbb4b88f8a1c9d4a8ab4e79a0f677

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

WindowFromPoint
GetMenu
CreatePopupMenu
IsCharUpperA
wsprintfA
DrawMenuBar
UpdateWindow
WaitMessage

comdlg32

FindTextA
GetFileTitleA

kernel32

GetLastError
ExitProcess
LoadLibraryA
FindResourceA
FormatMessageA
LocalAlloc
FreeLibrary
VirtualAlloc

shell32

Shell_NotifyIconW
SHGetFileInfoA

Exports

Exports

_g3udiTLeArrQ@16

Sections

CODE
Size: 147KB - Virtual size: 146KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bpdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 645B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.esdata
Size: 512B - Virtual size: 84B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ