172ea911b6b1384c082594d8be6bfab0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

172ea911b6b1384c082594d8be6bfab0_JaffaCakes118
Size

93KB
MD5

172ea911b6b1384c082594d8be6bfab0
SHA1

3efc6c3cf8ac5d6a3ca556c78e737a8c95c10f2f
SHA256

62b8c7b5deeaa649f463c31225903110399984448592d8f0ac655c8411cf85cc
SHA512

34fbfecc364a14e88cac758d456a2616bfa67602f0d91f4aff0cce1360f5613aa3803ed9bd275a3aaa52b5c5924e3735d9cf88a8e01922224cd6b07a17363e2d
SSDEEP

1536:A+k6VadY+f7tD5uHALZ37j7oRC9iN+pDz06EY97ZprffpFOTNFh0Ti+:A+LadDfp1600RvNKz06EKZ9nTWlJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
172ea911b6b1384c082594d8be6bfab0_JaffaCakes118

Files

172ea911b6b1384c082594d8be6bfab0_JaffaCakes118
.exe windows:5 windows x86 arch:x86

eb9a1b61ac3510b8ce78c6c6e92d1038

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DestroyMenu
GetMenuItemCount
GetCursorPos
DispatchMessageA
CheckMenuItem
CreateMenu
GetInputState
PeekMessageA
BeginPaint
SetWindowTextA
GetWindowLongA
GetCursor
DeleteMenu
EndPaint
LoadIconA
LoadCursorA
RegisterClassExA
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage

gdi32

DeleteObject
MoveToEx
CreateSolidBrush
GetStockObject

ole32

RevokeDragDrop
StringFromCLSID
OleIsCurrentClipboard
CoGetCallerTID
CoTestCancel
ProgIDFromCLSID
CoInitialize
CreateILockBytesOnHGlobal

oleaut32

CreateErrorInfo

comctl32

GetMUILanguage

kernel32

GlobalFree
GetModuleHandleA
GetSystemInfo
DeleteCriticalSection
GlobalAlloc
GetLastError
EnterCriticalSection
InitializeCriticalSection
GetCPInfo
HeapAlloc
HeapCreate
FreeLibrary
GetLocalTime
GetEnvironmentStrings
LeaveCriticalSection
LoadLibraryA

Sections

.text
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE