4207de9b046fbd0cf2d10680f5221204_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4207de9b046fbd0cf2d10680f5221204_JaffaCakes118
Size

130KB
MD5

4207de9b046fbd0cf2d10680f5221204
SHA1

abbe252af71aad043cf410e3a7c366cba2dae49a
SHA256

a587208289e5931763fcb9738c00d191f2922951b6290f526a8d842addf7d622
SHA512

a4084c2bdb4c064d5815730746c852038987c18ae251b9ecdf9e1cf6e535b7edabf27f7e4ce213059a613e5d8bc5d44ce2c0a4d3278351e2327fa8f49c17e6a1
SSDEEP

3072:BzGET93Ts1KpDPQbbBS/jDPGIj/NlKKI7IP+TGQvOiGz2o:BpT9UKhQ5aDuyKD7IivOS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4207de9b046fbd0cf2d10680f5221204_JaffaCakes118

Files

4207de9b046fbd0cf2d10680f5221204_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c8ef1628434550236bf7944f03ab9997

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memmove
calloc
wcscspn
mbstowcs
memset

gdi32

GetObjectA
CreateCompatibleBitmap
GetBkMode
GetTextColor
GetCurrentPositionEx
CopyEnhMetaFileA
GetBkColor
SelectPalette
GetClipBox

kernel32

LocalAlloc
VirtualAllocEx
ExitProcess
LoadLibraryA
LocalReAlloc

user32

CharToOemA
CharUpperBuffA
ChildWindowFromPoint
CheckMenuItem
GetMenu
GetCapture
GetDesktopWindow

Exports

Exports

jRKEkcrtktzy@8
_uVzTXJ9Nv
YB2t1AUxi
_qxILzz@4
_p_T2iIW7@16
Fvydg2BEb
aIZmA@24

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ