25f575f72836f65fb0e0e913a3e2a84e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

25f575f72836f65fb0e0e913a3e2a84e_JaffaCakes118
Size

361KB
MD5

25f575f72836f65fb0e0e913a3e2a84e
SHA1

de665e60cf2a5694c379e2f79337c093f66ffc3e
SHA256

ddf83985bc60891a1368e2fe20a70db9256ae1a694d15013dd149a2aea799226
SHA512

b684894a439b33aeb6f77f1363c7be74e1ca0046b39fe11bcff760edc8adb00062e7cce46271f114b54fa846695d7acc755815fc25c6c23d54c6a272f7bd307d
SSDEEP

6144:vkTuj+VPNxDnnYIHlDc6/8yceyRkDHVTFyVlILnQy7WVg1trbvkvrsl:vsBVPLnvl4W9ARaHVZjYgXHYrM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
25f575f72836f65fb0e0e913a3e2a84e_JaffaCakes118

Files

25f575f72836f65fb0e0e913a3e2a84e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6dd97d2c137c5404bdee714f9f5d301d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreateSolidBrush
GetDeviceCaps
SetROP2
SetTextColor
RestoreDC
SetBkColor
EndDoc
StartDocA
CreateDIBSection
SetMapMode
EndPage
DeleteObject
CreateCompatibleDC
RectInRegion

ole32

OleCreateFromDataEx
OleInitialize
OleUninitialize
OleQueryCreateFromData
OleNoteObjectVisible
OleCreateMenuDescriptor
CoTaskMemFree
OleCreateFromFileEx
CoLoadLibrary
OleSetClipboard
CoTaskMemAlloc
OleRegGetUserType
OleSave

user32

GetMessageA
LoadMenuA
GetParent
SystemParametersInfoA
GetCapture
MessageBoxA
GetClientRect
SetPropA
LoadBitmapA
EndDialog
LoadIconA
EnableMenuItem
GetWindowPlacement

kernel32

FreeEnvironmentStringsW
FormatMessageA
EnterCriticalSection
IsValidCodePage
GetStdHandle
TerminateProcess
UnhandledExceptionFilter
GetModuleFileNameA
VirtualAlloc
ReadFile
InterlockedDecrement
GetExitCodeThread
lstrcmpA
GetProcAddress
GetPriorityClass
GetCurrentThread
MultiByteToWideChar

Sections

.text
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ