24bce95151aab35a7d1a4beddb47e3e6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

24bce95151aab35a7d1a4beddb47e3e6_JaffaCakes118
Size

93KB
MD5

24bce95151aab35a7d1a4beddb47e3e6
SHA1

6af0844dcd5349894edf3b13e504374c5969439f
SHA256

502b9d9e401d428c5c3ced1c3d5ca0280690da63ee2ac58412b3627121081f1e
SHA512

f1ea5403cf1d7dac3193b8c9ed16ccb63ef87c3a7e2d82379c5419f902ff62ed42c8b50d3c216bea5e2b87c7d5180e8708277225daa0646094fe9d0221e9137d
SSDEEP

1536:2tQ7FlC7hcWS/ZdXL/SsmUsHfbZfLkShs/wP69efBUdI5vuyqInBYDKjnktZ7SxD:2tQ7jeCdrSsmUsjLhewP69sBGW2DqCOa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
24bce95151aab35a7d1a4beddb47e3e6_JaffaCakes118

Files

24bce95151aab35a7d1a4beddb47e3e6_JaffaCakes118
.exe windows:5 windows x86 arch:x86

d0f50a7bd640ef1f52be8d3d03587375

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadCursorA
EnableScrollBar
DispatchMessageA
TranslateMessage
GetMessageA
UpdateWindow
CheckDlgButton
GetWindowLongA
GetClipboardViewer
IsDlgButtonChecked
LoadIconA
SetWindowTextA
RegisterClassExA
BeginPaint
EndPaint
CreateWindowExA
ShowWindow

gdi32

CreatePatternBrush
GetStockObject
CreateEllipticRgn
SetBkMode
SetMapMode
DeleteObject
CreatePen

shlwapi

ord29

ole32

OleSetContainedObject
CoIsOle1Class
CoGetMalloc
CoUnmarshalHresult
StgIsStorageFile

kernel32

InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetCommandLineA
HeapFree
GetACP
InterlockedExchange
QueryPerformanceFrequency
GetFileAttributesExA
GetStartupInfoA
GetLastError
HeapDestroy
GetEnvironmentStrings
HeapAlloc
HeapCreate
GetModuleHandleA

Sections

.text
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE