593e17125bd844543159d40b03f75c8f_JaffaCakes118 | Triage

Sharing

General

Target

593e17125bd844543159d40b03f75c8f_JaffaCakes118
Size

92KB
MD5

593e17125bd844543159d40b03f75c8f
SHA1

441db74d933565d2c22360d38f23e79772c43f6a
SHA256

4b8cabae8a2e35cef0d50a79b91c654dd159e6cc7d75d343ff1867ba0cc8607a
SHA512

b090082931f381cca3690de1d29a53a62b1baef9d9216fe07f5179f0d6e2b76ef897cf3b120015fbae6a198accfa4a043a58dea4947b25539ecb9f427e3d2a7a
SSDEEP

1536:e1u0tXzRvQsfpERs2KSE5VBCucyNazPOdS38uZS/Zm9ZO6e9bFFekmPh4ZS:yjBIPjQAZyNazCSMUAZm9ZO6e9bPekmN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
593e17125bd844543159d40b03f75c8f_JaffaCakes118

Files

593e17125bd844543159d40b03f75c8f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

ba09fe01d4f5a05a424f2a8aeebe6ada

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DeleteMenu
DestroyMenu
CreateMenu
GetCursorPos
GetMenuItemCount
GetWindowLongA
GetInputState
CheckMenuItem
GetCursor
PeekMessageA
BeginPaint
LoadIconA
LoadCursorA
RegisterClassExA
SetWindowTextA
EndPaint
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA

gdi32

GetStockObject
CreateSolidBrush
DeleteObject

shlwapi

PathIsFileSpecA

ole32

StringFromCLSID
OleSave
CoInitialize
StgOpenPropStg
CoGetCallerTID
CoGetMalloc
ReadClassStm
CoFileTimeNow
CoTestCancel

comctl32

ord17

kernel32

GetModuleHandleA
GetSystemInfo
GlobalFree
FreeLibrary
GetLastError
GlobalAlloc
LeaveCriticalSection
GetEnvironmentStrings
EnterCriticalSection
InitializeCriticalSection
GetSystemTime
HeapAlloc
HeapCreate
LoadLibraryA
GetCPInfo
DeleteCriticalSection
GetLocalTime

Sections

.text
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE