26ea7895a03577e34284e605b7a6b8dd_JaffaCakes118 | Triage

Sharing

General

Target

26ea7895a03577e34284e605b7a6b8dd_JaffaCakes118
Size

76KB
MD5

26ea7895a03577e34284e605b7a6b8dd
SHA1

ffb9f2a603eefff5126cff2ee33c0e3fb1477ab9
SHA256

f04c9af96b1d30025012f0b28d7959e3088ae0281f2228a24618838f9bad94b8
SHA512

438752b8d221d470ef772258984fcb878cb15fb54e22114c55a2071c326a147fc6fbefba60afb3bf605fa2d55b422fe8fed067036d625f9f3209083db5f444d0
SSDEEP

1536:T6PpRd+ZB1hwh1wDyTr+8WMEZBHuBdq29h/xk9FqY/:T6xRSB1XUrZWMOHiA2Xw/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
26ea7895a03577e34284e605b7a6b8dd_JaffaCakes118

Files

26ea7895a03577e34284e605b7a6b8dd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

655d59a06b63635564d64d362e5fb11e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualQuery
VirtualAlloc
WideCharToMultiByte
VirtualFree
GetLastError
VirtualAllocEx
ExitProcess
LoadLibraryA
LocalAlloc
lstrlenA

user32

GetDC
LoadIconA
UnhookWindowsHookEx
UnregisterClassA
GetActiveWindow
TranslateMDISysAccel
IsWindowUnicode
CreatePopupMenu
CreateMenu
KillTimer
SystemParametersInfoA
TranslateMessage
CharNextA
GetMenu

Exports

Exports

G7vot1skE_25wL
Uy3fXO7mwG_G
QP_jmmZ
_uGExM9BH9yZy6@16
Zj5z7qGLanBMDq

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data
.rdata
.rsrc/0/DIALOG/TEXTFILEDLG
.rsrc/0/MANIFEST/1
.xml
.rsrc/0/RCDATA/DVCLAL
.rsrc/0/STRING/4094
.rsrc/0/STRING/4095
.rsrc/1033/BITMAP/BBABORT.bmp
.rsrc/1033/version.txt
.text