46589f77c2d0d7dea6c203cc6edfba21_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

46589f77c2d0d7dea6c203cc6edfba21_JaffaCakes118
Size

123KB
MD5

46589f77c2d0d7dea6c203cc6edfba21
SHA1

adac19f330c033df206cc15cbdc5199e25c438c7
SHA256

a634da5a2faea1b18a4a19f62115cd4f1926a5d657d861e9faf9f43915a7ea6d
SHA512

21ea0b045e24f3b9082c55ddfeeac1639c9eb0cd355401e5ff643f302e4135e07a91b3220dc3dfdf2e4049c596f6e8c1896b39da49dd60d71df723589e7892ef
SSDEEP

3072:s9WnYVCDN+l0S8r+GX6iyA3ONmZwXWDQxyjV9dyMEcNdOfXqm:s8Y2Nzd+J/BMyWDQbc8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
46589f77c2d0d7dea6c203cc6edfba21_JaffaCakes118

Files

46589f77c2d0d7dea6c203cc6edfba21_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2923fbf7a20a072cd7f8a58982cd9b07

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetParent
GetMenu
GetDesktopWindow
GetScrollRange
GetScrollPos
GetCapture

kernel32

GlobalFindAtomA
ExitProcess
GlobalAlloc
GlobalDeleteAtom
LoadLibraryA
VirtualAllocEx

gdi32

GetClipBox
GetDCOrgEx
GetBitmapBits
GetBkMode
GetBkColor
GetTextColor

msvcrt

sqrt
wcscspn
memcpy
exit
memset
wcsncmp
swprintf
time

Exports

Exports

_9l3jZzif
Bkdug01QZ@16
n8yJNmKYj46FX
BuxTdb@20

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ