86da9985ff62f3f44511b86ff9e317f1_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

86da9985ff62f3f44511b86ff9e317f1_JaffaCakes118
Size

41KB
MD5

86da9985ff62f3f44511b86ff9e317f1
SHA1

76c98e16662763fdc1d9bc035473dd59c6606cbc
SHA256

eb506b1980ad12bf185879636ea7f260d15747799a302c0772fa93179a4c8e38
SHA512

94a3d7813efbbf13c47cf3754357bf278998f660d3eea3b749bee4b2420b61e57834114102f175c2ff72bf08e5b7809716c75571485c9952165e6622fdf3963c
SSDEEP

768:Weo+ChZJRYuwHezqroHCp/+GHD13yR7BzU9LgA:RCTJRBwHezqEip/+dcL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
86da9985ff62f3f44511b86ff9e317f1_JaffaCakes118

Files

86da9985ff62f3f44511b86ff9e317f1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

496ef18cb706647727312d94034c32a5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
GetModuleHandleA
LocalAlloc
FreeLibrary
CloseHandle
CreateEventA
GetFileSize
lstrcpyA
LocalFree
GetLastError
GetCommandLineA
GetVersionExA
Sleep
GetVersion
GlobalAlloc
lstrcatA
GetTickCount

user32

BeginPaint
GetMessageA
GetClientRect
SetWindowTextA
GetFocus
ShowWindow
TranslateMessage
DestroyWindow

gdi32

ExtTextOutA
GetTextExtentPoint32A
SelectObject
SetPixel
GetPixel
GetDeviceCaps
CreateSolidBrush
CreateFontIndirectA
SetROP2
LineTo
GetObjectA
SetBkMode
DeleteObject
GetTextMetricsA
BitBlt
GetTextColor
GetStockObject
PatBlt

Sections

.text
Size: 1024B - Virtual size: 998B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrs
Size: 34KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ