08eece342b59384df33bf794e0c1db06_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

08eece342b59384df33bf794e0c1db06_JaffaCakes118
Size

179KB
MD5

08eece342b59384df33bf794e0c1db06
SHA1

9378fe9bd4edc392d0b83f41713f10572c659eee
SHA256

ae035f42e24a259feacaf2ddd06cfe2a33ed75cb1fcab0c975ce44e8be847926
SHA512

c0770539264f3ec4b56069d066ccec438b11b2c8e7315719f863104b90b05e92275cb60823afd7e877783b4ecef639c2bcce03eda958c1626789fe5212f8cccf
SSDEEP

3072:EDfJa7l4n9H6WeVBSPkMUuBl48iWPBr2+Ym4XdtghprSgO3ajMytouAA:EDRb9H6WCBuo2S+Su4CmUM2yA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
08eece342b59384df33bf794e0c1db06_JaffaCakes118

Files

08eece342b59384df33bf794e0c1db06_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b31fc0b4746070db421b9dbcc570293a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoInitialize
CoUninitialize
CoFreeUnusedLibraries
StringFromGUID2
CoCreateInstance

rpcrt4

I_RpcFreeBuffer
UuidCreate

gdiplus

GdipGetImageHeight
GdipGetImageWidth
GdipGetImagePixelFormat
GdipCreateBitmapFromFile
GdipDisposeImage

comctl32

ImageList_DragMove
ImageList_DragLeave
ImageList_DragEnter

winmm

timeGetTime

user32

ClipCursor
CreatePopupMenu
FindWindowA
DestroyMenu
TrackPopupMenuEx
RedrawWindow
GetDesktopWindow

kernel32

FlushInstructionCache
GetVersionExA
LocalAlloc
ExitProcess
ExitProcess
SetLocaleInfoW
LoadLibraryW
LocalFree
GetModuleFileNameA

gdi32

SetStretchBltMode
CreateDCW
DeleteDC
StretchBlt
SelectObject
CreateCompatibleDC
CreatePen
LineTo
CreateDIBSection
GetObjectType
BitBlt
CreateBitmap

msimg32

AlphaBlend
TransparentBlt

Sections

.text
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ