1650e9ce67ec4b3b3afd9af6df070105_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1650e9ce67ec4b3b3afd9af6df070105_JaffaCakes118
Size

123KB
MD5

1650e9ce67ec4b3b3afd9af6df070105
SHA1

4ad3817ff84a8479f38d7823ba2308c1cf829920
SHA256

9fc33d7c0f1c20a2a5d987a3096ea4ab1ca20557405147de6c830487f4638ffa
SHA512

97cb1257f1e867dcd41804cf1c89265575e135d7e4ab460d6519aed768cb02bc76f4b3b01a2385e7d89bd122e6e3a6c3ef73ef3e16bfb982681e979dedc84b4c
SSDEEP

3072:s9WnYVCDN+l0S8r+GX6iyA3ONmZwXWDQxyjV9dyMEcNdOfXqn:s8Y2Nzd+J/BMyWDQbc8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1650e9ce67ec4b3b3afd9af6df070105_JaffaCakes118

Files

1650e9ce67ec4b3b3afd9af6df070105_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2923fbf7a20a072cd7f8a58982cd9b07

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetParent
GetMenu
GetDesktopWindow
GetScrollRange
GetScrollPos
GetCapture

kernel32

GlobalFindAtomA
ExitProcess
GlobalAlloc
GlobalDeleteAtom
LoadLibraryA
VirtualAllocEx

gdi32

GetClipBox
GetDCOrgEx
GetBitmapBits
GetBkMode
GetBkColor
GetTextColor

msvcrt

sqrt
wcscspn
memcpy
exit
memset
wcsncmp
swprintf
time

Exports

Exports

_9l3jZzif
Bkdug01QZ@16
n8yJNmKYj46FX
BuxTdb@20

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ