4ca09e6be69485f0a7484c3eb011e56d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4ca09e6be69485f0a7484c3eb011e56d_JaffaCakes118
Size

100KB
MD5

4ca09e6be69485f0a7484c3eb011e56d
SHA1

d5eb2869d7af9910fd59f6de3b7ba5ecb4cccf6e
SHA256

a9a5b8f00e0cd843422ff85d610f9de8b44279034f5b1f53ff37936bff4a6a12
SHA512

62bcad90df6b481245935271a75e5c0de2623e5aa2b3ad70468a6ecd0e9515b0a16be2a9ab7e728ff4e8254d1d995d78a88b08bff6323c4254eed2c1709c272a
SSDEEP

1536:DHMWgDIJOYRqGqZP7o3pM7UC+S65oes/Xf+iVKdTus2HotewCuF4cmP85F:DnOqXqSq5+HEZVsYote5ug8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4ca09e6be69485f0a7484c3eb011e56d_JaffaCakes118

Files

4ca09e6be69485f0a7484c3eb011e56d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

7f9facc520ec68bba293b782e5e3d2e9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowLongA
DeleteMenu
GetMenuItemCount
SetWindowTextA
PeekMessageA
BeginPaint
LoadIconA
LoadCursorA
RegisterClassExA
CreateMenu
CheckMenuItem
EndPaint
DestroyMenu
GetCursor
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA
GetCursorPos

gdi32

GetROP2
GetStockObject
Rectangle
DeleteObject
CreateBitmap

shlwapi

AssocCreate

comctl32

ord13

advapi32

BuildTrusteeWithNameA

kernel32

EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetModuleHandleA
GlobalAlloc
GlobalFree
GetLocalTime
GetLastError
FreeLibrary
GetCPInfo
LoadLibraryA
GetSystemTime
HeapAlloc
HeapCreate
GetSystemInfo

Sections

.text
Size: 90KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE