3dacd14774c4ed84d5b0e39f06ee26ce_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3dacd14774c4ed84d5b0e39f06ee26ce_JaffaCakes118
Size

125KB
MD5

3dacd14774c4ed84d5b0e39f06ee26ce
SHA1

0ebc8ce432ff54a3010aa839a148b5ac4864cc0f
SHA256

ea1f91efd7f3331c3b6be022fe3a907f5ca331d00cdd57ef82a6e2bcac72d985
SHA512

1434582dc1a3ad69e578a7051d1dd8eddb98d3fea7d798124350e97db2373b34221d633da3c295592bd8e4e19de94c57acb60e61300e2d59acf28193f2597d32
SSDEEP

3072:QNIxEeDIA54koCu3MHA1/Z1ZzsGseQbBlb91KiN62dX1pWFs/BTT/2G:7xVIDoFAtZ5seQbf7BNhFoFsxT+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3dacd14774c4ed84d5b0e39f06ee26ce_JaffaCakes118

Files

3dacd14774c4ed84d5b0e39f06ee26ce_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bf62525c9ddec519bfdf386499f37c94

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreatePenIndirect
CreateFontIndirectA
GetClipBox

kernel32

VirtualAllocEx
LoadLibraryA
SetThreadLocale
ExitProcess
IsBadReadPtr
SetLastError
SizeofResource

comdlg32

GetSaveFileNameA
GetFileTitleA
FindTextA
GetOpenFileNameA
ChooseColorA

user32

GetCursorPos
GetClipboardData
GetMenu
DrawMenuBar
GetClassNameA
LoadCursorA
IsWindow
GetClientRect
IsMenu
GetCursor
IsCharLowerA

ole32

OleRun
CoRegisterClassObject
CoUninitialize
CoFreeUnusedLibraries
MkParseDisplayName
StringFromIID
WriteClassStm

Exports

Exports

_wL9itTB
ACqg1V0QzAqzO
srWQXycDR
oW27sUTV@20

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ