77d01bfef3bf4886c330c41037aebcd0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

77d01bfef3bf4886c330c41037aebcd0_JaffaCakes118
Size

178KB
MD5

77d01bfef3bf4886c330c41037aebcd0
SHA1

98981f93efda159e392f681f11de710c9a041cc0
SHA256

f24249bf330586acfb6c84ae1d5cb4c651b99021bd9ba15e5530974e811a5d58
SHA512

cb4ed60ae145c940a78a4d19a631cc8b21198e6212bc67f6004fd2efbee7b782054529b41f128284a733eb2539210bd76438cab3d59ae14803598cb47eb7eef9
SSDEEP

3072:j/S9C9WNcCakEWpbH9z9A0TMyxJpv/8xBC0JTYBnbmRiWUA6:j/SiCRvpDZ9AKM62BC2TYRbOLU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
77d01bfef3bf4886c330c41037aebcd0_JaffaCakes118

Files

77d01bfef3bf4886c330c41037aebcd0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9d676c2d5325cb4d9647c596780d6372

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EnableWindow
LoadCursorW
ClipCursor
IsWindow
GetFocus
TrackPopupMenuEx
DestroyMenu
SetWindowPos
SetParent
CreatePopupMenu
RedrawWindow
GetDesktopWindow
InvalidateRect
SetCursor
PtInRect

msvfw32

ICClose
ICSendMessage
ICOpen
ICDecompress

ole32

StgCreateDocfile
StgOpenStorage

kernel32

GlobalFree
GetShortPathNameW
GetModuleHandleW
GetHandleInformation
GetProcAddress
CloseHandle
UnhandledExceptionFilter
EnumResourceTypesW
ExitProcess
LoadLibraryW
CreateFileW
GetLastError
GetCurrentThreadId
GetCurrentProcessId
GetVersionExW

Sections

.text
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ