bddec1e75880a0bdec1e278155fe98f1_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bddec1e75880a0bdec1e278155fe98f1_JaffaCakes118
Size

93KB
MD5

bddec1e75880a0bdec1e278155fe98f1
SHA1

d551b1d6ee2809810b2db3ba3695a985a8b0bd65
SHA256

490b42ddbf566cff941e830cff60b7c5cc6c2353945166140c78e03d4f56bb0e
SHA512

f25dfe4bd33e9605ce3207c907e0fbe4023e417dba026284f5d227f8f428dc53122070abd8e9ee6dbe9d5421fc4d4bb363eecd34b996b59f7623dc288da70872
SSDEEP

1536:DURHdAMF8PQcPonnMZg2mq70JThljCfXf9HC0U7qBQxs4cRn:+HdAMFKPA3q7CThYfX1bkq+ts

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bddec1e75880a0bdec1e278155fe98f1_JaffaCakes118

Files

bddec1e75880a0bdec1e278155fe98f1_JaffaCakes118
.exe windows:5 windows x86 arch:x86

2d910802ca7c0ba57c296c45fb5a49da

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowLongA
EndPaint
CheckMenuRadioItem
GetSystemMetrics
SetWindowTextA
EnableMenuItem
LoadIconA
LoadCursorA
RegisterClassExA
BeginPaint
CreateWindowExA
ShowWindow
UpdateWindow
TranslateMessage
DispatchMessageA
GetMessageA

gdi32

GetBkColor
LineTo
CreateSolidBrush
DeleteObject
GetStockObject
CreateHatchBrush

ole32

ProgIDFromCLSID
CoInitialize
OleRegGetUserType
StringFromGUID2
OleGetAutoConvert

oleaut32

SafeArrayAllocDescriptor
SafeArrayDestroyDescriptor
CreateErrorInfo

kernel32

GetACP
GetModuleHandleA
HeapFree
InterlockedIncrement
QueryPerformanceCounter
GetVersionExA
GetStartupInfoA
GetLastError
HeapAlloc
HeapCreate
HeapDestroy
DeleteCriticalSection
LeaveCriticalSection
GetCommandLineA
EnterCriticalSection
GetFileSize
InitializeCriticalSection

Sections

.text
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE