8b492308f5d0a82aa54ffb6d851cf72f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8b492308f5d0a82aa54ffb6d851cf72f_JaffaCakes118
Size

93KB
MD5

8b492308f5d0a82aa54ffb6d851cf72f
SHA1

6c65208d65e9c7599947e7583054294da8395a29
SHA256

ac4f205f9fdb9f9c841b0d416e39364f26ea9724dcf88d53c654ff085de55d5c
SHA512

b0e6154b3634d49352ac75fe26ceba4da2a3d1225fc61d136766a0e6ca7fe8c9f81de643849a795cba98b388a42512aaf2ffb82ff3998bb5824847242c93e558
SSDEEP

1536:jNj92APG40VFO/Z/dIpvrqCtCDN7L3gaaa9OIPV9dQx62i+AkOcY9nx:jNB24G40V0HcwLQ2IIPeM2r6j9nx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8b492308f5d0a82aa54ffb6d851cf72f_JaffaCakes118

Files

8b492308f5d0a82aa54ffb6d851cf72f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e25e505fc208f1b49c0d9b99e74ce58a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetMenuItemCount
GetCursor
GetWindowLongA
EndPaint
GetCursorPos
DestroyMenu
GetInputState
CheckMenuItem
BeginPaint
LoadIconA
LoadCursorA
CreateMenu
DeleteMenu
RegisterClassExA
CreateWindowExA
ShowWindow
UpdateWindow
TranslateMessage
DispatchMessageA
GetMessageA
SetWindowTextA
PeekMessageA

gdi32

DeleteObject
CreateSolidBrush
GetStockObject
MoveToEx

ole32

RevokeDragDrop
StringFromCLSID
ProgIDFromCLSID
CoInitialize
OleIsCurrentClipboard
CreateILockBytesOnHGlobal
CoGetCallerTID
CoTestCancel

oleaut32

CreateErrorInfo

comctl32

GetMUILanguage

kernel32

GlobalFree
GetModuleHandleA
GetSystemInfo
FreeLibrary
GlobalAlloc
GetLastError
LoadLibraryA
GetEnvironmentStrings
GetCPInfo
HeapAlloc
HeapCreate
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetLocalTime
InitializeCriticalSection

Sections

.text
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE