43051fb276d747cfec21862b49e8012f_JaffaCakes118 | Triage

Sharing

General

Target

43051fb276d747cfec21862b49e8012f_JaffaCakes118
Size

79KB
MD5

43051fb276d747cfec21862b49e8012f
SHA1

f819dd95291957dc9f9d3cf5dc93d76a50061eea
SHA256

b289902d62edcd8b74c3ac4c6c2d64ae184e84ce8096275aa3500ce62f63ec10
SHA512

421478c4a5e8c703f0858dc687eca3a42bdfab8b55e77da83660c699b172bc767fc983fc1ef913108d6f1bdf0e3926a809475dce4b097497d31e7f8c057e5c2d
SSDEEP

1536:0QQM0FFiE70ilEjveVq2xVlfpMQx70lX/V59Sepu3:RQMg0ilM+q2pOOepu3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
43051fb276d747cfec21862b49e8012f_JaffaCakes118

Files

43051fb276d747cfec21862b49e8012f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

07d276a148449fdfe26c15949cb42c96

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

F:\uclbrgN\lwpisYe\biymr\qXDxjvQq.pdb

Imports

user32

SendMessageTimeoutA
RemovePropW
SetForegroundWindow
DrawStateW
GetMenuDefaultItem
DrawFrameControl
MessageBoxA
GetKeyState
MessageBoxW
IsChild
GetWindowTextLengthA
wsprintfW
AllowSetForegroundWindow

shlwapi

StrCatBuffW

kernel32

GetModuleFileNameA
lstrlenW
GetFileAttributesExW
HeapReAlloc
CreateNamedPipeA
GlobalSize
TlsSetValue
DuplicateHandle
CreateEventW
CreateMutexA
CopyFileW
HeapCreate
GlobalDeleteAtom

gdi32

CreateRectRgnIndirect
Polyline
GetFontData
SelectObject
SetWindowOrgEx
SetBitmapBits
EndDoc

Exports

Exports

?hdUbnnSoZdEfdfebr@@YGMPAD@Z

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 902B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ