a5d9c72dda6f6b0b9b112ef8d978884c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a5d9c72dda6f6b0b9b112ef8d978884c_JaffaCakes118
Size

92KB
MD5

a5d9c72dda6f6b0b9b112ef8d978884c
SHA1

13c3fb643e71afdbe3f41195fbbf2d4f3084d672
SHA256

98d3cf41f7bd3b46c4dea0a9b6b48ab326db47a60568631d155b63af5fb2fcba
SHA512

5a72f76160176e0a856f392e02f1ad8240244c2ff4bd006560c92ce0f968ea3e3175aeae67f3070dd60af2b719d90db13d83f3d8d387284a7271e021b00771b7
SSDEEP

1536:CXlpHhKEZ+7ch35zl74vnmR341n5+Z/CTExstfGEU3NyQ7FJ6kN91DIt7:KG7uDOiqnwZKw6tuE+NywD629Ct7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a5d9c72dda6f6b0b9b112ef8d978884c_JaffaCakes118

Files

a5d9c72dda6f6b0b9b112ef8d978884c_JaffaCakes118
.exe windows:5 windows x86 arch:x86

73f5daa2c058de6154a7e9f664498c81

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetWindowTextA
CheckMenuRadioItem
EnableMenuItem
EndPaint
GetWindowLongA
GetSystemMetrics
LoadIconA
LoadCursorA
RegisterClassExA
BeginPaint
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA

gdi32

PolylineTo
CreateSolidBrush
GetStockObject
CreateHatchBrush
GetBkMode
DeleteObject

ole32

CoGetCurrentProcess
CoInitialize
CoGetCancelObject
OleGetAutoConvert

oleaut32

SafeArrayAllocDescriptor
SafeArrayDestroyDescriptor

kernel32

LeaveCriticalSection
DeleteCriticalSection
HeapFree
GetModuleHandleA
InterlockedIncrement
GetVersionExA
GetCommandLineA
GetStartupInfoA
HeapAlloc
HeapCreate
EnterCriticalSection
InitializeCriticalSection
GetACP
GetLastError
GetFileSize
QueryPerformanceCounter
HeapDestroy

Sections

.text
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE