8eafec5a893455912ba53c6a4ce539a1_JaffaCakes118 | Triage

Sharing

General

Target

8eafec5a893455912ba53c6a4ce539a1_JaffaCakes118
Size

92KB
MD5

8eafec5a893455912ba53c6a4ce539a1
SHA1

0f427d1b4a9eeacdc45459dfbc051abd3c913a5a
SHA256

528cde7070c2277f2180b865b0f469ba4f36cfda16bf04c99ea6d5f68f5ec023
SHA512

48bfaa4bead7b4c4b90360d5ee802f6d7c343db0931a998522bf0500ca40033bfb72928f524adbc57ec9fa5cb07c1d43ddaf762f4915df79bee3928c07460339
SSDEEP

1536:kr7epp4GOMBHXNemL1NDjU0PVT7EI9nDcWnLM3PbTlvVtDPd+4tGoqMJkulC:kr7eMGFzRxPl7VZTLMfb/tDPs4tGgJLl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8eafec5a893455912ba53c6a4ce539a1_JaffaCakes118

Files

8eafec5a893455912ba53c6a4ce539a1_JaffaCakes118
.exe windows:5 windows x86 arch:x86

40a9f4d661611073fec5fed558c526ad

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetSystemMetrics
EnableMenuItem
CheckMenuRadioItem
DispatchMessageA
SetWindowTextA
BeginPaint
GetWindowLongA
EndPaint
LoadIconA
LoadCursorA
RegisterClassExA
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage

gdi32

CreateHatchBrush
GetBkMode
PolylineTo
GetStockObject
CreateSolidBrush
DeleteObject

ole32

CoInitialize
CoGetCurrentProcess
OleGetAutoConvert
CoGetCancelObject

oleaut32

SafeArrayAllocDescriptor
SafeArrayDestroyDescriptor

kernel32

GetFileSize
GetLastError
LeaveCriticalSection
DeleteCriticalSection
GetACP
EnterCriticalSection
GetStartupInfoA
GetCommandLineA
HeapAlloc
HeapCreate
InitializeCriticalSection
GetModuleHandleA
GetVersionExA
QueryPerformanceCounter
HeapDestroy
InterlockedIncrement
HeapFree

Sections

.text
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE