841abb3214f6da2eb24eb39ca68a0009_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

841abb3214f6da2eb24eb39ca68a0009_JaffaCakes118
Size

93KB
MD5

841abb3214f6da2eb24eb39ca68a0009
SHA1

44c3f8f2a0b0047694033bddd098c1ba18ea44df
SHA256

d37cd24072050869e36db69c57f386bc28502a449c51c1df3d78d17eb4afb8ef
SHA512

bdf5c42c25a7c3031c21aa4682fca0537656947289f2d2b18fe42d89e8a9eb03fa8ea03b899fedafe00237fd8f9114a07934e928929fda057fc42a532ae65831
SSDEEP

1536:mixsOKxboNvI50Vbrmq8HmbgiBA+zNx+JYNzXORdoREKCrLjxjdl9lt2tv:tpwoNg50VbqqwmbgiC+hx+qNzXORdoR/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
841abb3214f6da2eb24eb39ca68a0009_JaffaCakes118

Files

841abb3214f6da2eb24eb39ca68a0009_JaffaCakes118
.exe windows:5 windows x86 arch:x86

1a20e97944599a7a9031e2ccd42d2a55

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DispatchMessageA
TranslateMessage
UpdateWindow
ShowWindow
CreateWindowExA
EndPaint
IsDlgButtonChecked
CheckDlgButton
EnableScrollBar
GetWindowLongA
SetWindowTextA
LoadIconA
LoadCursorA
RegisterClassExA
BeginPaint
GetClipboardViewer
GetMessageA

gdi32

CreatePatternBrush
GetStockObject
DeleteObject
SetMapMode
SetBkMode
CreateRectRgn

ole32

CoWaitForMultipleHandles
CoUnmarshalHresult
StgIsStorageFile
CoGetStandardMarshal
OleSetContainedObject
CoIsOle1Class

kernel32

LeaveCriticalSection
DeleteCriticalSection
GetLastError
GetModuleHandleA
HeapDestroy
GetCommandLineA
GetFileAttributesA
HeapFree
GetACP
InterlockedDecrement
EnterCriticalSection
InitializeCriticalSection
GetStartupInfoA
HeapAlloc
HeapCreate
QueryPerformanceCounter

Sections

.text
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE