3d80d354a2909cec3f63a6e97a8057b3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3d80d354a2909cec3f63a6e97a8057b3_JaffaCakes118
Size

208KB
MD5

3d80d354a2909cec3f63a6e97a8057b3
SHA1

f347472fe0569cd8227105661ebde4f02e7ba9b8
SHA256

0e2a18bafce1e299a65a01175c188dab617ee96e4890b738b852b6ed3d4e6804
SHA512

fff5aeb528470c0e9fe66edb7eb51deaf5aa849f2cf1916c59cf5142f707d2a070059971a58e86a3478dd232618fd6fd16ebddc5d8814ff9ee52093e41d652a3
SSDEEP

6144:Xppp5acPkDjvNmE8i7wJvmK1h8QnZ4evG8VFk:XecPkDLgPuwsK4QnZ3G4k

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3d80d354a2909cec3f63a6e97a8057b3_JaffaCakes118

Files

3d80d354a2909cec3f63a6e97a8057b3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3106308ce8dc8df5222d2e17989079ab

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetDIBColorTable
BitBlt
CreateCompatibleBitmap
GetPaletteEntries
GetObjectA
GetTextAlign
GetBkColor
GetBkMode
GetTextColor

comdlg32

GetSaveFileNameA

kernel32

HeapDestroy
lstrcatA
lstrcmpiA
LoadLibraryA
lstrcmpA
VirtualAllocEx
lstrlenA
MoveFileA

user32

GetCapture
OffsetRect
PeekMessageA
GetMenu
PeekMessageW
GetDesktopWindow
PostQuitMessage

Exports

Exports

9Y6rsydKM@16
DaSOJ
_yLHCSc
_mATKF1
_bEm94Q

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 191KB - Virtual size: 190KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ