65fcb5e8b8e1b06d620b74c197373bee_JaffaCakes118 | Triage

Sharing

General

Target

65fcb5e8b8e1b06d620b74c197373bee_JaffaCakes118
Size

50KB
MD5

65fcb5e8b8e1b06d620b74c197373bee
SHA1

e25d15f4614078f4337f698b650a3db4078c7adb
SHA256

8eff76544cadad267f8b810f187dbf3d98cabd41dfee525705fde701c81b7206
SHA512

516017aed41c2e85561aa2dff7543d4deaad82d7281a173af7cb1f3289c972f8ce8004a13883635a19843082a7f54d4afc93a98b22ff8b126f77856d5604281b
SSDEEP

1536:8fosPBtoCcwRBt9uliMv56cYWc/0a/yn3a1:8fo6tqiPzWwFWTMy3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
65fcb5e8b8e1b06d620b74c197373bee_JaffaCakes118

Files

65fcb5e8b8e1b06d620b74c197373bee_JaffaCakes118
.exe windows:5 windows x86 arch:x86

fad6f7c98d1d72bbd2b5ec96617bd26d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

RegisterClassExA
LoadCursorA
LoadIconA
BeginPaint
GetMessageA
UpdateWindow
ShowWindow
CreateWindowExA
TranslateMessage
EnableWindow
WindowFromDC
EndPaint
SetWindowTextA
DispatchMessageA

gdi32

CreateEllipticRgn
CreatePen
CreatePatternBrush
GetStockObject
DeleteObject

shlwapi

StrIsIntlEqualW

ole32

CoGetCurrentProcess
CoGetMalloc
GetRunningObjectTable
CoCopyProxy

oleaut32

VarDateFromDec

kernel32

HeapDestroy
SetFileAttributesA
GetACP
InterlockedExchange
GetModuleHandleA
HeapFree
HeapAlloc
HeapCreate
QueryPerformanceFrequency

Sections

.text
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 880B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE