5b8a576e4b247184a53f0688601fa265_JaffaCakes118 | Triage

Sharing

General

Target

5b8a576e4b247184a53f0688601fa265_JaffaCakes118
Size

183KB
MD5

5b8a576e4b247184a53f0688601fa265
SHA1

8677e593d9794a7597f5ede650cc79f8c5d92c0f
SHA256

622ec38350ef232c097f4759f3e978d892f18ffca77febd053017a602025c92c
SHA512

56a489e555bf7257157544654501240213203410c6fdefe93d47d94de67d5b0032c01fd2b60f36eba26e478307d25a3f0aad0013073676b05e76acaa9c96fa55
SSDEEP

3072:0GScvnAigS+b3LNKQenbAr5tzq49hSbCHp7/afzceOAB/s7TjiWLNIVatWtDw6uO:5RvAM+b3CbEtzq4CWBafzZOGeiWatEhw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5b8a576e4b247184a53f0688601fa265_JaffaCakes118

Files

5b8a576e4b247184a53f0688601fa265_JaffaCakes118
.exe windows:4 windows x86 arch:x86

77b5f242ef7d983547393be122b17ff5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ClipCursor
CreatePopupMenu
RedrawWindow
TrackPopupMenuEx
DestroyMenu
FindWindowA
GetDesktopWindow

gdiplus

GdipGetImageWidth
GdipCreateBitmapFromFile
GdipGetImagePixelFormat
GdipGetImageHeight
GdipDisposeImage

msimg32

AlphaBlend
TransparentBlt

gdi32

CreateDCW
StretchBlt
SelectObject
BitBlt
DeleteDC
LineTo
GetObjectType
SetStretchBltMode
CreateCompatibleDC
CreatePen
CreateDIBSection
CreateBitmap

winmm

timeGetTime

kernel32

FlushInstructionCache
GetVersionExA
LoadLibraryW
LocalAlloc
ExitProcess
SetLocaleInfoW
LocalFree
ExitProcess
GetModuleFileNameA

ole32

StringFromGUID2
CoFreeUnusedLibraries
CoUninitialize
CoInitialize
CoCreateInstance

comctl32

ImageList_DragLeave
ImageList_DragMove
ImageList_DragEnter

rpcrt4

I_RpcFreeBuffer
UuidCreate

Sections

.text
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 388KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ