1229a316794c88b04a77f11b550fc961_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1229a316794c88b04a77f11b550fc961_JaffaCakes118
Size

121KB
MD5

1229a316794c88b04a77f11b550fc961
SHA1

bcc5c2fcbf19fd7da8f8e6b04a60b47de6a105cd
SHA256

5da38bab111ccfd87e2b79b4e4936071c42e29c8204f0ece218a5ca0a0a5b338
SHA512

5c06fc30a01798f9c9ef0a4718722ca204ab0c24e301d9a3788d5cd1291c23de8f3dad272e6d027025d12096afbfe7df1cd7ac5a8649c371b335b1c328dca0fa
SSDEEP

3072:Bx9ZSJ5l0DpjY5lrr5Pp8VIjUJQRF4f8uyF+:hIJn0Dl0lrr5+S4W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1229a316794c88b04a77f11b550fc961_JaffaCakes118

Files

1229a316794c88b04a77f11b550fc961_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b0c62eff68a6db8bc66f32391aa67363

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetCapture
GetCursorPos
GetDesktopWindow
GetMenu
GetDCEx
GetDC

kernel32

VirtualAllocEx
GetDateFormatA
GetCurrentProcessId
LoadLibraryA

version

VerFindFileA
GetFileVersionInfoSizeA
GetFileVersionInfoA

gdi32

BitBlt
SelectPalette
GetBkColor
CreateDIBSection
CreateCompatibleBitmap
GetTextColor
SetBkMode
LineTo
GetBkMode

Exports

Exports

cpc74nhLv87W
jheOt4MeXxQT
028l20w6A9d
4FEw5SJqrI@12

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ