af1368d052abd12048dbca94e4a51f01_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af1368d052abd12048dbca94e4a51f01_JaffaCakes118
Size

93KB
MD5

af1368d052abd12048dbca94e4a51f01
SHA1

e13589e64b1b8d3b395446029124117eb277575a
SHA256

df8602d330641da61821f392b405ed61ff3cf6ff1d54c1cc5944d82a56ead524
SHA512

1538bd88537911a14c55cbbee9833f0adca50f3b5380dc0abf73633f6d0465e1ef95cd54bf6ba276229ee63a87bdf09d070887d75ec0c547a6e4f21193c3eb1f
SSDEEP

1536:ICLw99TionFk7SAuIdI7BO//pE0yNksbzkFtr0nzTfTUaxFo7XxhSDajvDZVvpKd:p0j+onCSAucae+1fzkFofhcBhSGjlpp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
af1368d052abd12048dbca94e4a51f01_JaffaCakes118

Files

af1368d052abd12048dbca94e4a51f01_JaffaCakes118
.exe windows:5 windows x86 arch:x86

67292cfbdf3f60169373552cb075c60c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DeleteMenu
CreateMenu
CheckMenuItem
GetWindowLongA
GetMessageA
UpdateWindow
ShowWindow
CreateWindowExA
TranslateMessage
DestroyMenu
GetCursor
GetCursorPos
BeginPaint
GetMenuItemCount
SetWindowTextA
PeekMessageA
EndPaint
LoadIconA
LoadCursorA
RegisterClassExA
DispatchMessageA

gdi32

Rectangle
DeleteObject
CreateBitmap
GetROP2
GetStockObject

ole32

CoGetMalloc
CreateBindCtx
CoInitialize
ReadClassStm

lz32

LZInit

kernel32

GetModuleHandleA
GlobalAlloc
LoadLibraryA
GetSystemInfo
InitializeCriticalSection
GetCPInfo
GetLocalTime
GlobalFree
FreeLibrary
LeaveCriticalSection
DeleteCriticalSection
GetSystemTime
GetLastError
HeapAlloc
HeapCreate
EnterCriticalSection

Sections

.text
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE