0d57bb938360adb4d7805e0af8f07519_JaffaCakes118 | Triage

Sharing

General

Target

0d57bb938360adb4d7805e0af8f07519_JaffaCakes118
Size

439KB
MD5

0d57bb938360adb4d7805e0af8f07519
SHA1

4d03b838a848eb98daaa3a49af217c2556266345
SHA256

1d1a03c019acf20cbd09aa1f45aef7c913f6b80a15bd2f4a7fcd43a64ece996f
SHA512

8a1a409b82e38614a146765eb90f1d10c3fa6f9a902da5ccad14eabbf8d13a5225a0591a73ff67efc11ed6a1ceab40bc60efcc4e40f0b9ad1de58f2102170c91
SSDEEP

12288:BrgeN+g2sCpu+PKmXjjZthx+lDnJCgXT2OBGuNOw3V:RgUL2sQdPNXjjZtHCDEfuYw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0d57bb938360adb4d7805e0af8f07519_JaffaCakes118

Files

0d57bb938360adb4d7805e0af8f07519_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0c342093419d07370516747a307d2037

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

WindowFromPoint
GetClientRect
SetDlgItemInt
CreateDialogIndirectParamA
SetParent
AdjustWindowRect

ole32

OleGetIconOfFile

oleaut32

RegisterTypeLi

gdi32

CreateDCA
CreateFontW
ChoosePixelFormat
CreateDiscardableBitmap
CloseMetaFile
AbortDoc
Arc
CloseEnhMetaFile
AngleArc
CreateFontA
CopyEnhMetaFileA
CreateDCW

advapi32

RegQueryMultipleValuesA
RegReplaceKeyA
RegCreateKeyA
RegCreateKeyExA
RegNotifyChangeKeyValue
RegOpenKeyExA
RegQueryValueA
RegLoadKeyA
RegCloseKey
RegOverridePredefKey

kernel32

GetProcessHeap
VirtualAlloc
GetModuleHandleA
GetStartupInfoA
GetProcAddress
GetProfileSectionA

msvcrt

__getmainargs
_adjust_fdiv
_controlfp
_except_handler3
__set_app_type
__p__fmode
_exit
_XcptFilter
exit
_acmdln
__setusermatherr
_initterm
__p__commode

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 122KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 286KB - Virtual size: 369KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ