5675f7e206e5e76f704146f4efbcb7e1_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5675f7e206e5e76f704146f4efbcb7e1_JaffaCakes118
Size

207KB
MD5

5675f7e206e5e76f704146f4efbcb7e1
SHA1

7b7ee8b7ff30a73becfeaccccf96a9d1cb9c0165
SHA256

c10d0a9ef440380a92efbc208cc19e4d375c4a3d33487a60fbfbff7bc96aea2e
SHA512

6aff3a2b0bca87c5c31564cfbea8d092bab33ca0c99f1c66dc07c61669c955b40355a1f41a7ac9756fb7e08ed6cca5ade2ad4d149827c243bc2e8cefaef9e766
SSDEEP

6144:0OaVIRvdKHbK8SJWHlD5mOCP9FPAcRqW9cz/n:p2LcyD5HCfAKs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5675f7e206e5e76f704146f4efbcb7e1_JaffaCakes118

Files

5675f7e206e5e76f704146f4efbcb7e1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

48ca627e445b2978b8fd90b1b67c9b82

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreateCompatibleDC
CreatePenIndirect
GetCurrentPositionEx
GetTextAlign
GetClipBox
CreatePalette
GetDCOrgEx
GetBkColor
GetBitmapBits

user32

CharLowerA
IsCharLowerA
LoadBitmapA
GetMenu
LoadStringA
LoadKeyboardLayoutA
LoadIconA

kernel32

LoadLibraryA
GetFullPathNameA
VirtualAllocEx
ExitThread
GetLastError
GetFileSize
IsBadHugeReadPtr
GetFileType

shell32

Shell_NotifyIconA
SHGetFileInfoA
SHGetFolderPathA

advapi32

RegDeleteValueA
RegQueryValueA
GetLengthSid
RegLoadKeyA

Exports

Exports

_NRiDWhrqLN
_HDX5fNhgysr@16

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 189KB - Virtual size: 189KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ