2fc953bc3e383045712a62de0b265150_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2fc953bc3e383045712a62de0b265150_JaffaCakes118
Size

208KB
MD5

2fc953bc3e383045712a62de0b265150
SHA1

a757500570ed75194973a338c824e693e52763e5
SHA256

12dfd06dde7753023ead70bcdae7180743487ee3a5352f1f7fbd821199ad171a
SHA512

ab174d4f17af1e755334cb7d018f2fd640005a6c2d7add6592876903085a213d7527d3b1f8315b01cc1f416e5238b501746060c937a94fd74a5723a44aef5914
SSDEEP

6144:Xppp5acPkDjvNmE8i7wJvmK1h8QnZ4evG8VFk:XecPkDLgPuwsK4QnZ3G4k

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2fc953bc3e383045712a62de0b265150_JaffaCakes118

Files

2fc953bc3e383045712a62de0b265150_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3106308ce8dc8df5222d2e17989079ab

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetDIBColorTable
BitBlt
CreateCompatibleBitmap
GetPaletteEntries
GetObjectA
GetTextAlign
GetBkColor
GetBkMode
GetTextColor

comdlg32

GetSaveFileNameA

kernel32

HeapDestroy
lstrcatA
lstrcmpiA
LoadLibraryA
lstrcmpA
VirtualAllocEx
lstrlenA
MoveFileA

user32

GetCapture
OffsetRect
PeekMessageA
GetMenu
PeekMessageW
GetDesktopWindow
PostQuitMessage

Exports

Exports

9Y6rsydKM@16
DaSOJ
_yLHCSc
_mATKF1
_bEm94Q

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 191KB - Virtual size: 190KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ