22c7365616851e1f835b319c90aa848f_JaffaCakes118 | Triage

Sharing

General

Target

22c7365616851e1f835b319c90aa848f_JaffaCakes118
Size

98KB
MD5

22c7365616851e1f835b319c90aa848f
SHA1

1d9254d1c4f99dff3650176c04dc58a7ff68d932
SHA256

8d550b1e8a4bbacaefdb65ff7176ad60d310cc5849ba615ec9997a29861a9fcc
SHA512

98004a58ff90c1343ff6713c5f3648cf68442d0428edd314e812f0b3dd8e29b6000899528e53d5ce6829da1b372b62f41cb33f0a29317fea719007eef98ff328
SSDEEP

1536:dbs8J9QKtd8/aXs5q2o02mm2qguSEFEhAfoX2vMYZuEag0OQu+0zjl3LCh:+8LQWd8/3Y2o0/9FxGYWoXIMXTXu+0di

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
22c7365616851e1f835b319c90aa848f_JaffaCakes118

Files

22c7365616851e1f835b319c90aa848f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

37f00e7eefcae2ab38e9d70ff892148d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFindAtomA
GlobalFlags
GlobalFree
GlobalHandle
GlobalCompact
VirtualAlloc
VirtualAllocEx
VirtualFree
VirtualFreeEx
VirtualLock
VirtualProtect
GlobalAlloc
ExitThread
ExitProcess

user32

MessageBoxA
MessageBoxExA

gdiplus

GdipCombineRegionRegion
GdipCreateAdjustableArrowCap
GdipClonePen

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 614B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 885B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CODE?
Size: 93KB - Virtual size: 93KB

IMAGE_SCN_MEM_WRITE