45ed8d6f347d52335b24e9dcdf34843d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

45ed8d6f347d52335b24e9dcdf34843d_JaffaCakes118
Size

255KB
MD5

45ed8d6f347d52335b24e9dcdf34843d
SHA1

133dea9dc011bde749e2ff00f931387aacc07a60
SHA256

cdbfc8b80850452b2f3ba7f6f91dacc160cefbeeb42970cd5f148e0549e83e42
SHA512

c8bd5b800b89be1866633355e5798004cba4a85255ba1714b8c5e3f19d1954bf37697bd1cead22bcc929a9fdb6c253639b29e7ddadd9dbdc9961bb2d6af584e8
SSDEEP

6144:F9plPFqE0TzfclnAPAUTxetpl3fVuXuKoUaCGF0s/Va:jpwTzfOC6DJKdL5s/Va

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
45ed8d6f347d52335b24e9dcdf34843d_JaffaCakes118

Files

45ed8d6f347d52335b24e9dcdf34843d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

512f0a5b7b7cef7ef6061be8c140b76b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

GetSaveFileNameA
GetFileTitleA
ChooseColorA
FindTextA
GetOpenFileNameA

gdi32

GetRgnBox
CreateBrushIndirect
GetPaletteEntries
LineTo
CreateDIBitmap
CreatePenIndirect

version

VerFindFileA
VerInstallFileA
GetFileVersionInfoSizeA

user32

GetFocus
RegisterClipboardFormatA
GetScrollRange
DestroyCursor
IsWindowEnabled
GetMenuItemInfoA
IsWindowVisible

kernel32

GetACP
GetModuleHandleA
GetProcAddress
LocalAlloc
ExitThread
VirtualAlloc
VirtualAllocEx

shell32

DragQueryFileA
SHGetFileInfoA
SHGetDesktopFolder
SHGetSpecialFolderLocation

shlwapi

PathFileExistsA

Sections

CODE
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 221KB - Virtual size: 220KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 708B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE