0e448268dfbae10d4c20117f165e2bef_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0e448268dfbae10d4c20117f165e2bef_JaffaCakes118
Size

93KB
MD5

0e448268dfbae10d4c20117f165e2bef
SHA1

3cc3e8f5f9888fd14e77faa8bc3aea5c79713494
SHA256

bd5087b279e5bc5a5257eac3c3ec87f5317fdcdd8ab2b9ea85b4847c08a34dd9
SHA512

d26f2ff65b30e5fb63f355e60a4e7dc6813ef6738de123a57df52e447d6bd5fd1c0a338dc9141a5f4ae934728463a360832c6af064e5c6da37ace08a01859670
SSDEEP

1536:Goiq4JwL86mqfgAL85/QeT3QM/9P+GcTARajllnFuJpj1+YS3pE6SkVV:VDCU9LU4e0MlWGmARajllnepjAxp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0e448268dfbae10d4c20117f165e2bef_JaffaCakes118

Files

0e448268dfbae10d4c20117f165e2bef_JaffaCakes118
.exe windows:5 windows x86 arch:x86

4c7844c5eb4356df0dabd1c8afc59725

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetCursor
GetMenuItemCount
DeleteMenu
CheckMenuItem
PeekMessageA
DispatchMessageA
EndPaint
GetCursorPos
LoadIconA
LoadCursorA
RegisterClassExA
GetWindowLongA
SetWindowTextA
BeginPaint
CreateMenu
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage
DestroyMenu

gdi32

GetStockObject
Rectangle
GetROP2
CreateBitmap
DeleteObject

ole32

CoInitialize
CreateBindCtx
IIDFromString

lz32

LZInit

kernel32

GetLastError
GetSystemTime
InitializeCriticalSection
EnterCriticalSection
GetSystemInfo
FreeLibrary
LeaveCriticalSection
DeleteCriticalSection
GlobalAlloc
GetLocalTime
GlobalFree
GetCPInfo
LoadLibraryA
HeapAlloc
HeapCreate
GetModuleHandleA

Sections

.text
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE