d16a1870603a0f7111c64584e6eb5deb_JaffaCakes118 | Triage

Sharing

General

Target

d16a1870603a0f7111c64584e6eb5deb_JaffaCakes118
Size

92KB
MD5

d16a1870603a0f7111c64584e6eb5deb
SHA1

b7e202fc5e3bdffa9521fa01380e3b4a9d9bd07e
SHA256

3f9795160e86ddd8c05ce19423437016b9e2e659ed6c431a47d2085e44e42bfe
SHA512

0ba6687f557f825c1a9a4d2d8e7cd3aa5a187cfb0f8a9fcc41c690afdbf25806374d292dc6d8681d7dea4b615639bb65c7ad5d4a748518435c4814949a7623cc
SSDEEP

1536:7l/ViWodVGW2brCKTtgLAZ/kV3JYaC8Tja6VjlKPJU8wPrJeO3o0e94Wyq:B/VR8VG5FwJJHIJUFIGPj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d16a1870603a0f7111c64584e6eb5deb_JaffaCakes118

Files

d16a1870603a0f7111c64584e6eb5deb_JaffaCakes118
.exe windows:5 windows x86 arch:x86

804dc872554702cb6a5d1e3ebbb8d6d9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreateMenu
DeleteMenu
GetWindowLongA
GetCursor
TranslateMessage
GetMessageA
UpdateWindow
ShowWindow
DispatchMessageA
DestroyMenu
CheckMenuItem
GetCursorPos
GetMenuItemCount
PeekMessageA
SetWindowTextA
BeginPaint
LoadIconA
LoadCursorA
RegisterClassExA
CreateWindowExA
EndPaint

gdi32

CreateBitmap
Rectangle
GetStockObject
DeleteObject
GetROP2

ole32

CoGetMalloc
CoInitialize
CreateBindCtx
ReadClassStm

lz32

LZInit

kernel32

FreeLibrary
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetCPInfo
GetLastError
GetSystemInfo
GlobalAlloc
GetModuleHandleA
GlobalFree
LoadLibraryA
GetSystemTime
HeapAlloc
HeapCreate
GetLocalTime

Sections

.text
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE