122615f9e49bf4674affb4c6b3ae0218_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

122615f9e49bf4674affb4c6b3ae0218_JaffaCakes118
Size

110KB
MD5

122615f9e49bf4674affb4c6b3ae0218
SHA1

dd080e9052d360c4d1b5024d9007cf577ba163dd
SHA256

9ce3d5b2a6df200b48ca7c0fcbcab7a1283d3e3c52d94e81c650a3f490ee1b02
SHA512

aac34b85f7900aec661fc2e92e4b881929140753abaf61473599fd2460b13c7418a5d1601880d4bbd7c6fa847e7d9ce8336b560d2b492baf5f71dfd45b2c6be8
SSDEEP

3072:yWRROoh5yCoJIuHEd6RfqkSGMWuedFpF5/:VRwohYCoPHhSkURc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
122615f9e49bf4674affb4c6b3ae0218_JaffaCakes118

Files

122615f9e49bf4674affb4c6b3ae0218_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b7e0aa4e224a248d86033c159d1e4a6d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RtlZeroMemory
GetModuleHandleA
ExitProcess

user32

GetDlgItemTextA
SetDlgItemTextA
EndDialog
DialogBoxParamA

comctl32

InitCommonControls

Sections

.text
Size: 512B - Virtual size: 386B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 350B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 852B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 107KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ