d4213cae2284b0dd4845ff408f37260d_JaffaCakes118 | Triage

Sharing

General

Target

d4213cae2284b0dd4845ff408f37260d_JaffaCakes118
Size

93KB
MD5

d4213cae2284b0dd4845ff408f37260d
SHA1

d16070d3ed2f2643e5bbd2d94b1d139e2ad8de3f
SHA256

84417d9432a60f1044ac64a97ec540cdd55293e1c6938c8df0bd01b453ba35bd
SHA512

78908f385901e6875ac103391276f111b806dd6f8865deaeba5f969f03afe9ca7e39745467ae2048f169503639534ff4f6fddb2bb19b747f72536518e9310beb
SSDEEP

1536:Tr9hZ13LHTyNw5mCNqkEy5nwU9yBctuQGzmRku3lpL0toEvIEegleMsFljuM:X9RnHmkqLyBcBctuQomq0hGpeFlqM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d4213cae2284b0dd4845ff408f37260d_JaffaCakes118

Files

d4213cae2284b0dd4845ff408f37260d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

bbcf57af1ff92fcc4f96d4242d5e6da0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetWindowTextA
EnableMenuItem
CheckMenuRadioItem
EndPaint
GetSystemMetrics
LoadIconA
LoadCursorA
RegisterClassExA
BeginPaint
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA
GetWindowLongA

gdi32

CreateSolidBrush
PolylineTo
GetStockObject
CreateHatchBrush
GetBkMode
DeleteObject

ole32

CoInitialize
CoGetCurrentProcess
CoGetCancelObject
OleGetAutoConvert

oleaut32

SafeArrayAllocDescriptor
SafeArrayDestroyDescriptor

kernel32

InterlockedIncrement
GetLastError
GetModuleHandleA
HeapDestroy
QueryPerformanceCounter
GetACP
InitializeCriticalSection
GetStartupInfoA
HeapAlloc
HeapCreate
HeapFree
DeleteCriticalSection
LeaveCriticalSection
GetCommandLineA
GetVersionExA
GetFileSize
EnterCriticalSection

Sections

.text
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE