0eb0d06ab34440f6b8c20fa9a1789a63_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0eb0d06ab34440f6b8c20fa9a1789a63_JaffaCakes118
Size

93KB
MD5

0eb0d06ab34440f6b8c20fa9a1789a63
SHA1

1aea2c4cc10fb267746dea6bc9a67c27c44efa9f
SHA256

8bcf77509a7492cbd359e88c16d1934b99492da26206a574520228e3532ee044
SHA512

70a8cd756fc8289279ae9953b9f8b6c69f7a22ac4e71315ef970cccb7cbbf8767cd04d0b9679aaede5a6dbd293474b497f1566970621e9170fad5e577dd290f9
SSDEEP

1536:T4swqafdceBJM0l0LlRIje5BRNIg0Xa03VF4O51zpczAXlUaPBGu5LCvIv1YBCN:JwqalBHlKRIqD0K0fpSSiS8k42YoN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0eb0d06ab34440f6b8c20fa9a1789a63_JaffaCakes118

Files

0eb0d06ab34440f6b8c20fa9a1789a63_JaffaCakes118
.exe windows:5 windows x86 arch:x86

1b49931b25d66361699b3a0ff5bc07ac

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetClipboardOwner
CheckDlgButton
LoadIconA
DispatchMessageA
SetWindowTextA
EnableScrollBar
IsDlgButtonChecked
LoadCursorA
RegisterClassExA
GetWindowLongA
BeginPaint
EndPaint
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage

gdi32

PolyBezier
CreatePatternBrush
DeleteObject
SetBkMode
GetStockObject
CreateBrushIndirect

ole32

CoUnmarshalHresult
StgIsStorageFile
OleSetContainedObject
CoGetObjectContext
CoWaitForMultipleHandles

oleaut32

SafeArrayAllocDescriptor
SafeArrayDestroyDescriptor

kernel32

HeapFree
QueryPerformanceCounter
GetFileAttributesA
GetACP
HeapDestroy
GetCommandLineA
GetStartupInfoA
HeapAlloc
HeapCreate
DeleteCriticalSection
LeaveCriticalSection
GetLastError
InterlockedDecrement
EnterCriticalSection
GetModuleHandleA
InitializeCriticalSection

Sections

.text
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE