86e6f72ff3a29a833aefd20e2afceedd_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

86e6f72ff3a29a833aefd20e2afceedd_JaffaCakes118
Size

183KB
MD5

86e6f72ff3a29a833aefd20e2afceedd
SHA1

a31b4498bdb03a62d578f2b122ead1610aecff3b
SHA256

8a793a9bbc469f8e9eae1161650647c51579f9cdfd7614202f3732e73de302a5
SHA512

1fa6c6f9773f10ef84c541e539c5eb916e775d789786e46facbd9f2e8492466bb5f4f245a6e938d34c63d46b83a56023f95c0e87708b4a45ce9503759f7cc0d5
SSDEEP

3072:W1PEupVz9nfwdze8yqeN9dOt6HJWIpUFg+tm6ov7td7iN:W1PFz9fwhCqeUt6QIpUFgp6X

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
86e6f72ff3a29a833aefd20e2afceedd_JaffaCakes118

Files

86e6f72ff3a29a833aefd20e2afceedd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8d93fe09c5fb4a5eb6353c6f7866bc99

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetShortPathNameW
CloseHandle
GetModuleHandleW
GetCurrentThreadId
GetHandleInformation
GlobalFree
GetCurrentProcessId
EnumResourceTypesW
ExitProcess
GetLastError
UnhandledExceptionFilter
CreateFileW
GetProcAddress
LoadLibraryW
GetVersionExW

user32

CreatePopupMenu
InvalidateRect
GetFocus
ClipCursor
TrackPopupMenuEx
IsWindow
RedrawWindow
SetParent
DestroyMenu
GetDesktopWindow
SetWindowPos
EnableWindow
SetCursor
LoadCursorW
PtInRect

msvfw32

ICOpen
ICClose
ICSendMessage
ICDecompress

ole32

StgCreateDocfile
StgOpenStorage

Sections

.text
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 240KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ