2653adfb01ce5a262d5ab5e2312364f9_JaffaCakes118 | Triage

Sharing

General

Target

2653adfb01ce5a262d5ab5e2312364f9_JaffaCakes118
Size

20KB
MD5

2653adfb01ce5a262d5ab5e2312364f9
SHA1

12bae70b6a268133f15ac1490bb53ef64fed5871
SHA256

25145042c7b38ea38b9a5970ed9ec68a0b9d76a5a8714002150e779017154542
SHA512

5e8b8071fa8f6ac467d8a77507b3964c71ad35b668008d6a4721c463e7dfc51a9e3c14e63714ab396a9e9c0582978e938661dae4312bdf787f7c53bc7ffe9fc9
SSDEEP

384:sNm4Rd0855tHNTBhmy6Gf4cb0uzlvRSY+Z5fW9WI2lBy/5V/:sE4d555hmyFBb0uxvRSHDfQqy/z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2653adfb01ce5a262d5ab5e2312364f9_JaffaCakes118

Files

2653adfb01ce5a262d5ab5e2312364f9_JaffaCakes118
.exe windows:1 windows x86 arch:x86

69ee175c1a987a18653544c9c3682f7b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

FlashWindow
ChangeMenuW
CallMsgFilterW
CreateMenu

gdi32

FloodFill
PathToRegion
GdiStartDocEMF
RectInRegion
GetDeviceCaps
PtInRegion
PolyPatBlt
GetTextColor
GetPixelFormat

shell32

SHGetMalloc
StrRChrIW
SHEmptyRecycleBinA
Control_RunDLLW
SHGetDesktopFolder
RealShellExecuteExW
SHFileOperation

Sections

��t
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE