1c654d36d43773fbe75eb9b497debbab_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1c654d36d43773fbe75eb9b497debbab_JaffaCakes118
Size

93KB
MD5

1c654d36d43773fbe75eb9b497debbab
SHA1

2837a48fa9be71d970ef0c40136c0cf20f728520
SHA256

b8aaa3ff4affb9294767031df50889a48ef0caa96de3b96a1ee607a12c42282b
SHA512

1be8b7fcab6a12a03feef5fbf0e366ba7cde30dd1a280c57973684c1043e7ad7ec7833846599fe584c99d2b55cfa09a4f2debe813c3f9c481f5db74751b8f684
SSDEEP

1536:52YHBTNEeA5rsd8bhQhl6oWzCdITJ6oQsmjrtH3bTrQhCzyErfB/ef2pylJvN3bX:MYHBTNDsrsd8bhBzCycoQPP9rTVzTp8Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1c654d36d43773fbe75eb9b497debbab_JaffaCakes118

Files

1c654d36d43773fbe75eb9b497debbab_JaffaCakes118
.exe windows:5 windows x86 arch:x86

89ff2c7abfdc7dadd82baa0a53e45df6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetCursorPos
GetCursor
DeleteMenu
SetWindowTextA
CreateMenu
GetWindowLongA
CheckMenuItem
SetMenu
DestroyMenu
BeginPaint
GetTopWindow
GetDC
LoadIconA
LoadCursorA
RegisterClassExA
CreateWindowExA
ShowWindow
UpdateWindow
TranslateMessage
DispatchMessageA
GetMessageA
PeekMessageA
EndPaint
ReleaseDC

gdi32

SelectPalette
Rectangle
GetStockObject
GetROP2
TextOutA
CreateBitmap
DeleteObject

netapi32

NetApiBufferFree
NetApiBufferAllocate

oleaut32

OleSavePictureFile

comctl32

ord325
ord322
ord13
ord321
ord320

kernel32

lstrlenA
GetModuleHandleA
DeleteCriticalSection
GlobalFree
GlobalAlloc
EnterCriticalSection
InitializeCriticalSection
FreeLibrary
GetSystemInfo
LoadLibraryA
GetLastError
GetLocalTime
GetSystemTime
GetCPInfo
HeapAlloc
HeapCreate
LeaveCriticalSection

Sections

.text
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE