62b2255b99b8419a00a2d86e5d2a72db_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

62b2255b99b8419a00a2d86e5d2a72db_JaffaCakes118
Size

172KB
MD5

62b2255b99b8419a00a2d86e5d2a72db
SHA1

cb610099c8be7497c38d513aac292e5837baf6c4
SHA256

8f8baf8b1ae056c27812a24e830a65e47adf7f4e4e7ff4cd12afa76dd08e57f0
SHA512

26c2598781f97fbe1bfd17de320a9c7418307aa1a405e50cf5b3dd222bf118179a21ca2816bb24ba89ba88e5680f3a2a3f809ada10ab7b71245513ce35f13dfe
SSDEEP

3072:3rg7dGmi1mnYPRLcfOmjucDud2YQwgR5zG6coYKN4V98iUrVT3:sRGP1mklexwYzHkbWB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
62b2255b99b8419a00a2d86e5d2a72db_JaffaCakes118

Files

62b2255b99b8419a00a2d86e5d2a72db_JaffaCakes118
.exe windows:4 windows x86 arch:x86

12a89c2adfc797f3ca0ac8c345233377

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetShortPathNameW
CreateFileW
GetLastError
GlobalFree
GetHandleInformation
GetCurrentThreadId
EnumResourceTypesW
CloseHandle
GetProcAddress
ExitProcess
GetCurrentProcessId
LoadLibraryW
UnhandledExceptionFilter
GetModuleHandleW
GetVersionExW

user32

TrackPopupMenuEx
GetFocus
RedrawWindow
SetParent
DestroyMenu
CreatePopupMenu
LoadCursorW
EnableWindow
SetWindowPos
ClipCursor
GetDesktopWindow
SetCursor
InvalidateRect
IsWindow
PtInRect

msvfw32

ICOpen
ICSendMessage
ICClose
ICDecompress

ole32

StgCreateDocfile
StgOpenStorage

Sections

.text
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ