16008afa1470055bb30e2275e16cbd4b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

16008afa1470055bb30e2275e16cbd4b_JaffaCakes118
Size

123KB
MD5

16008afa1470055bb30e2275e16cbd4b
SHA1

3e3dfd0d46fe1c52b39207f3a3b29eb8d2b1e389
SHA256

b4db93bee6beccb92f7315b640ca0482acc384e6c296108934ca8a18418c403c
SHA512

b1ce1ae795d9b0a9c026c6be6fa843cba37131f206e1833ebb8e054406dcb195ebdcae45aab2338fca2ebff1c147cb3f54b156fea8bf09bee7d2eb581ff3970f
SSDEEP

3072:wFoxZ/SCav85bH3Huz0Gb/0htxuVsYvH51q2lYWSXLm:/F68NeL7Q6X33

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16008afa1470055bb30e2275e16cbd4b_JaffaCakes118

Files

16008afa1470055bb30e2275e16cbd4b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2f1888e65733077fc51ea72cce1c0771

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetMenu
GetDesktopWindow
GetSystemMenu
GetTopWindow
GetCapture

kernel32

LoadLibraryA
GetDiskFreeSpaceA
GetFileAttributesA
GetFileSize
VirtualAllocEx
GetEnvironmentStrings

ole32

CoFreeUnusedLibraries
WriteClassStm
CoCreateGuid
CoGetObjectContext

gdi32

GetTextColor
RestoreDC
GetRgnBox
GetBkColor
GetBkMode

Exports

Exports

_Rpz1IpYUugFE
_GvJfQ80@12
_imCAgDK2
lAXWQ767Y
0cAXqKBPt@12

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 107KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ