0e9fad02029f20050be01496f3dd1c09_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0e9fad02029f20050be01496f3dd1c09_JaffaCakes118
Size

99KB
MD5

0e9fad02029f20050be01496f3dd1c09
SHA1

e10dd80d2bab850ce5b9046064f2232bee8c0bb2
SHA256

37943dd03b42018920f1a4699681c7ec5dae67cf770120d14f119bef0a4ad485
SHA512

9100708c46ffbbd092bf031e4b83a0e35a7baa5b132ef3565400c9c232fd5043161475107060357c8d892426e684eb23abb824fbbea29c4c1e7d3f7fba7b6059
SSDEEP

3072:vnuew34jkCDSCYnN8i4Rm6Q3pYR8X40AFC:vnuT3gWVnN8SnY1i

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0e9fad02029f20050be01496f3dd1c09_JaffaCakes118

Files

0e9fad02029f20050be01496f3dd1c09_JaffaCakes118
.exe windows:5 windows x86 arch:x86

cc19f546acda539bebb938d4c243bf89

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetMenuItemCount
GetCursor
LoadIconA
LoadCursorA
RegisterClassExA
CreateMenu
CheckMenuItem
DestroyMenu
DeleteMenu
GetWindowLongA
PeekMessageA
GetCursorPos
SetWindowTextA
BeginPaint
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA
EndPaint

gdi32

GetROP2
DeleteObject
CreateBitmap
Rectangle
GetStockObject

shlwapi

AssocCreate

comctl32

ord13

advapi32

BuildTrusteeWithNameA

kernel32

LeaveCriticalSection
DeleteCriticalSection
LoadLibraryA
EnterCriticalSection
GetSystemInfo
GlobalAlloc
GlobalFree
InitializeCriticalSection
GetLocalTime
GetModuleHandleA
GetSystemTime
GetLastError
GetCPInfo
HeapAlloc
HeapCreate
FreeLibrary

Sections

.text
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE