43588ab1ba30b86557a5237470333168_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

43588ab1ba30b86557a5237470333168_JaffaCakes118
Size

93KB
MD5

43588ab1ba30b86557a5237470333168
SHA1

b2741811fb6a37cde2b3e5c1212b0c7b36508e6f
SHA256

575e616cbe7ef0de4f6effdb5ea6f623b2e5aa1adcfcf3f57d29644771e8c489
SHA512

ad8617734c5a74d650f7d6a45dfbe0a85975bfa40bb85e219d92c3190dd21a3fadf14e3ed2601db1c3ab741d5020be596acea39b17f53bcab732847999b55e24
SSDEEP

1536:IQj0K49ycnGFIeana4dUOjNiTDdMh5MXuXNquk8L/j:IsgnnGCbna6UAETRuM+h9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
43588ab1ba30b86557a5237470333168_JaffaCakes118

Files

43588ab1ba30b86557a5237470333168_JaffaCakes118
.exe windows:5 windows x86 arch:x86

9dff00e9cd2e665b216b9c1a84c20c22

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DispatchMessageA
TranslateMessage
GetMessageA
UpdateWindow
ShowWindow
CreateWindowExA
RegisterClassExA
GetWindowLongA
SetWindowTextA
GetClipboardViewer
EnableScrollBar
CheckDlgButton
IsDlgButtonChecked
BeginPaint
LoadIconA
LoadCursorA
EndPaint

gdi32

CreatePatternBrush
SetMapMode
DeleteObject
GetStockObject
SetBkMode
CreateRectRgn

ole32

CoIsOle1Class
OleSetContainedObject
CoGetStandardMarshal
CoWaitForMultipleHandles
CoUnmarshalHresult
StgIsStorageFile

kernel32

DeleteCriticalSection
InterlockedDecrement
GetLastError
HeapDestroy
HeapFree
LeaveCriticalSection
QueryPerformanceCounter
GetCommandLineA
GetACP
GetModuleHandleA
GetStartupInfoA
EnterCriticalSection
InitializeCriticalSection
HeapAlloc
HeapCreate
GetFileAttributesA

Sections

.text
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE