ae6c27c0b11ab2efb1ae29ef33d15dd0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ae6c27c0b11ab2efb1ae29ef33d15dd0_JaffaCakes118
Size

94KB
MD5

ae6c27c0b11ab2efb1ae29ef33d15dd0
SHA1

2328601f12f644f3e907b7f8f9b5b2ecad475299
SHA256

e0df80cf39fc4ac4cd5b88e5c1199d0fda5411108ff65b6bb28027181e03b154
SHA512

13ef0a33b27b4f013e34f8e6169f6fb5d3b73d7ca06d13297b27ce496aa921718d8323442e321ddea35630d07f28baa295470e1f59426a346843ead14c545d69
SSDEEP

1536:Tk/PfCvwBZo+M7BjPS/VNeC0jGbRJdSYGoqXSzXPFP3ZV5QFTdqpODkOr9SBeZ02:w/SoPGBTS/PeCSGbTEoqwXt2FRDkOrY3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ae6c27c0b11ab2efb1ae29ef33d15dd0_JaffaCakes118

Files

ae6c27c0b11ab2efb1ae29ef33d15dd0_JaffaCakes118
.exe windows:5 windows x86 arch:x86

faee77a933bc209fdc4ffb7b471c1816

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DeleteMenu
GetWindowLongA
CreateMenu
DestroyMenu
CheckMenuItem
GetCursorPos
LoadIconA
LoadCursorA
RegisterClassExA
PeekMessageA
SetWindowTextA
BeginPaint
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA
GetCursor
EndPaint

gdi32

Rectangle
GetROP2
DeleteObject
CreateBitmap
TextOutA
GetStockObject

oleaut32

VarUI8FromDec
OleSavePictureFile

comctl32

ord321
ord322
ord325
ord320
ord13

kernel32

FreeLibrary
GlobalAlloc
DeleteCriticalSection
lstrlenA
GlobalFree
LeaveCriticalSection
LoadLibraryA
EnterCriticalSection
InitializeCriticalSection
GetModuleHandleA
GetCPInfo
GetSystemTime
GetLastError
GetLocalTime
HeapAlloc
HeapCreate
GetSystemInfo

Sections

.text
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE