2e36fc9361b723be72a8ee0f422e5151_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2e36fc9361b723be72a8ee0f422e5151_JaffaCakes118
Size

2.4MB
MD5

2e36fc9361b723be72a8ee0f422e5151
SHA1

dd71dda4ce8c19449f99d4923c7e83f31e21428b
SHA256

6ba4fff12a13830fded67951a28b24f1295ee15bc4d34b1deb69bfcf2ee3c586
SHA512

9a3a3688334fe5c929ed484225b987e386042e32be0d0f56fa7a397d4a4703ba69975c220eb224fb2fcd87fa27dbef363a44159f1366e62f2ed9fb3a6df78c92
SSDEEP

49152:TUmXn1KNPZFJeexjBiUVMEyZ01v0ENvvkg/rtT2xNk+x8WVonSBQo:n4maIUKE402EBFr1iNMWVoer

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e36fc9361b723be72a8ee0f422e5151_JaffaCakes118

Files

2e36fc9361b723be72a8ee0f422e5151_JaffaCakes118
.exe windows:4 windows x86 arch:x86

15b2ff4e608940681e27622a79235e16

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA
GetDC

kernel32

GetModuleHandleA
GetEnvironmentVariableA
ExitProcess
FormatMessageA
GetLastError
SetLastError
GetProcAddress
VirtualProtect
LoadLibraryA
VirtualFree
VirtualAlloc
GlobalAlloc
SetFilePointer
ReadFile
CreateFileA
GetModuleFileNameA
LoadLibraryA

advapi32

FreeSid

comctl32

ImageList_Add

comdlg32

PrintDlgA

gdi32

SaveDC

ole32

OleRun

oleaut32

VariantInit

shell32

DragFinish

urlmon

HlinkNavigateString

version

VerQueryValueA

wininet

InternetOpenA

winmm

joyGetPos

winspool.drv

OpenPrinterA

wsock32

send

Sections

.text
Size: 38KB - Virtual size: 3.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE