2a09ba0a074c207107c96d8550ddf4fa_JaffaCakes118 | Triage

Sharing

General

Target

2a09ba0a074c207107c96d8550ddf4fa_JaffaCakes118
Size

208KB
MD5

2a09ba0a074c207107c96d8550ddf4fa
SHA1

ab0a5ae9a854feedd916ef78a3ee00deab425d4b
SHA256

e70c6e3f61325209ae97e13a9f578c9b0a7f76d676d5681fe0f487afdbde3f9c
SHA512

0023445e61b681a37494085849ecf153916e11543f074cd3ce1fa6dc34e60db84aaf6dbe9ac4996efa684235e636cfafec3b05414a107a454aec275608f27cdf
SSDEEP

6144:Xppp5acPkDjvNmE8i7wJvmK1h8QnZ4evG8VFk:XecPkDLgPuwsK4QnZ3G4k

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2a09ba0a074c207107c96d8550ddf4fa_JaffaCakes118

Files

2a09ba0a074c207107c96d8550ddf4fa_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3106308ce8dc8df5222d2e17989079ab

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetDIBColorTable
BitBlt
CreateCompatibleBitmap
GetPaletteEntries
GetObjectA
GetTextAlign
GetBkColor
GetBkMode
GetTextColor

comdlg32

GetSaveFileNameA

kernel32

HeapDestroy
lstrcatA
lstrcmpiA
LoadLibraryA
lstrcmpA
VirtualAllocEx
lstrlenA
MoveFileA

user32

GetCapture
OffsetRect
PeekMessageA
GetMenu
PeekMessageW
GetDesktopWindow
PostQuitMessage

Exports

Exports

9Y6rsydKM@16
DaSOJ
_yLHCSc
_mATKF1
_bEm94Q

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 191KB - Virtual size: 190KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ