d1d4779768ab2e62b7e0e67efdaaedaa_JaffaCakes118 | Triage

Sharing

General

Target

d1d4779768ab2e62b7e0e67efdaaedaa_JaffaCakes118
Size

93KB
MD5

d1d4779768ab2e62b7e0e67efdaaedaa
SHA1

5f688436b18234d478e6db4185ba3ab1793c7985
SHA256

641e46f93eb4754c7281e6e86e07f04077cf82a3d9abce0a2a31d2e46d30c8cd
SHA512

2f2a8b280b0f67cd512911f24e4b3fc3cd1dc3437c707a96beaed5ee701cf4fd7551b8324697d6d68462f1d28bfebeefcc4faf36ae58624901ea1b8a55556804
SSDEEP

1536:X+MDcGzn2mSN88ivyVfQxqRvzLPmiWQ56sn0Alc7MG7vxkXis/CeYKes2:XymSNMypWiWk/EvxCgTs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d1d4779768ab2e62b7e0e67efdaaedaa_JaffaCakes118

Files

d1d4779768ab2e62b7e0e67efdaaedaa_JaffaCakes118
.exe windows:5 windows x86 arch:x86

6e0911bfa82b14f4338eb9d999ae5459

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DeleteMenu
CreateMenu
PeekMessageA
CheckMenuItem
GetMenuItemCount
GetCursorPos
DestroyMenu
BeginPaint
LoadIconA
LoadCursorA
RegisterClassExA
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA
SetWindowTextA
EndPaint

gdi32

Rectangle
DeleteObject
CreateBitmap
GetROP2
GetStockObject

shlwapi

AssocCreate

comctl32

ord13
ord321
ord320
ord325
ord322

kernel32

GlobalAlloc
GetModuleHandleA
GetSystemInfo
GlobalFree
FreeLibrary
LoadLibraryA
DeleteCriticalSection
LeaveCriticalSection
GetSystemTime
EnterCriticalSection
InitializeCriticalSection
GetCPInfo
HeapAlloc
HeapCreate
GetLocalTime

Sections

.text
Size: 83KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE