2707697781ba3b87514705443ed654cc_JaffaCakes118 | Triage

Sharing

General

Target

2707697781ba3b87514705443ed654cc_JaffaCakes118
Size

592KB
MD5

2707697781ba3b87514705443ed654cc
SHA1

1f83e39d65886d501627db731b29fb05398e86fb
SHA256

c0cd2336d642f10a938d8a528f6ae4611688440b5cd01acdce42665d8027e426
SHA512

fab4063eaae1ec3460ababf359cfac499aeb33173f5d8c129f0ec4d6f8ec3ce11eec61e1d2b1888c3073837e7d59aaee0d1f1e4128cafc109536a5e2eba7da03
SSDEEP

12288:MeEcNC1rnQ/95aFs53Vj4UxNbjXDzxZ39IwGjLTHj33m:bEcfl5ak9fbjRswGj/j33m

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2707697781ba3b87514705443ed654cc_JaffaCakes118

Files

2707697781ba3b87514705443ed654cc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bb92f866a291fc53737b7bb353272c17

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoA
GetModuleHandleA
LoadLibraryA

user32

FillRect
IsWindowEnabled
SetWindowPos
CloseWindow
CreateWindowExA
MoveWindow

gdi32

CreateRoundRectRgn
CreateDCA

oleaut32

CreateErrorInfo
SysAllocStringLen
SafeArrayCreate

msvcrt

__getmainargs
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
strcmp
_adjust_fdiv
_XcptFilter
exit
_acmdln
_exit
_initterm
__setusermatherr

Sections

.text
Size: 144KB - Virtual size: 143KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 838B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 436KB - Virtual size: 433KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ