2330a88fe1275200d05f19bcf66bdc05_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2330a88fe1275200d05f19bcf66bdc05_JaffaCakes118
Size

93KB
MD5

2330a88fe1275200d05f19bcf66bdc05
SHA1

e747c264d9cd1d7ff66b550f21ed1f2e8716b939
SHA256

3cd6f97b5cf6d9f3905c3e9abe46843a22e382f9a48bb4fdded1f6be719b88be
SHA512

32db61ebe57066673dc723b30cc3609defb7a7874eac10772bede998cd6056d1dec677ce3facfea90ae875e860f214d6260f674bb65f4d5950725066b714e78d
SSDEEP

1536:9fAmBO0V/H72IrL1oKLYASuGzEZMtd1LLJok8yOM2w6h:9YmBXV/H7lUXuVGddLJGw2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2330a88fe1275200d05f19bcf66bdc05_JaffaCakes118

Files

2330a88fe1275200d05f19bcf66bdc05_JaffaCakes118
.exe windows:5 windows x86 arch:x86

9ad268f4320807261333787a492b1cd1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CheckDlgButton
LoadCursorA
RegisterClassExA
GetWindowLongA
IsDlgButtonChecked
LoadIconA
EnableScrollBar
SetWindowTextA
GetClipboardOwner
BeginPaint
EndPaint
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA

gdi32

PolyBezier
SetBkMode
CreateBrushIndirect
DeleteObject
GetStockObject
CreatePatternBrush

ole32

OleSetContainedObject
CoUnmarshalHresult
CoGetObjectContext
StgIsStorageFile
CoWaitForMultipleHandles

oleaut32

SafeArrayAllocDescriptor
SafeArrayDestroyDescriptor

kernel32

InterlockedDecrement
GetFileAttributesA
LeaveCriticalSection
DeleteCriticalSection
EnterCriticalSection
GetModuleHandleA
GetCommandLineA
HeapAlloc
HeapCreate
InitializeCriticalSection
GetACP
HeapDestroy
HeapFree
GetStartupInfoA
QueryPerformanceCounter
GetLastError

Sections

.text
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE