2e290de2e5983c41f0b6419198b1adb2_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2e290de2e5983c41f0b6419198b1adb2_JaffaCakes118
Size

92KB
MD5

2e290de2e5983c41f0b6419198b1adb2
SHA1

82e1658d84c8b3db36e262b929132583904f3b9c
SHA256

9c9159923913da9886fa67cc5023dd29edc590a50a1e4066bc1b19d95d9eed61
SHA512

96c4f47f88b58e9e9a3eeabfb54ba7a88414f041f4a48b846a80b0f13465c17515ec340056f14118f19c1d1a2b8cb31b5f6d875f8b46eda0b051a78d392bd25b
SSDEEP

1536:1aRnP1eeualGZVy5OAgIuIfusBGgzLj6RNFq1E9K1m0wrRIOMtC7c1zNpOnYIuSx:yPCDsGxmuM4Q1E9K1irRIOD70zCHhN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e290de2e5983c41f0b6419198b1adb2_JaffaCakes118

Files

2e290de2e5983c41f0b6419198b1adb2_JaffaCakes118
.exe windows:5 windows x86 arch:x86

681bdd4593dc61a0124b1c9fa86ebb8b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetSystemMetrics
GetWindowLongA
SetWindowTextA
DispatchMessageA
CheckMenuRadioItem
LoadIconA
LoadCursorA
RegisterClassExA
BeginPaint
EnableMenuItem
EndPaint
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage

gdi32

CreateSolidBrush
CreateHatchBrush
DeleteObject
GetBkMode
GetStockObject
PolylineTo

ole32

CoInitialize
CoGetCurrentProcess
CoGetCancelObject
OleGetAutoConvert

oleaut32

SafeArrayAllocDescriptor
SafeArrayDestroyDescriptor

kernel32

HeapDestroy
GetModuleHandleA
GetLastError
QueryPerformanceCounter
GetFileSize
HeapFree
InitializeCriticalSection
GetVersionExA
HeapAlloc
HeapCreate
DeleteCriticalSection
LeaveCriticalSection
GetStartupInfoA
GetCommandLineA
InterlockedIncrement
GetACP
EnterCriticalSection

Sections

.text
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE