de132ffb359358defb448c59e309392e_JaffaCakes118 | Triage

Sharing

General

Target

de132ffb359358defb448c59e309392e_JaffaCakes118
Size

93KB
MD5

de132ffb359358defb448c59e309392e
SHA1

5f500067a523ba74746aab9fb5dbe389f770db3b
SHA256

262d7d58bc7ad7c355868a7007eb3f31730094702f1e96e6f5ec5c2e744fea50
SHA512

48485f92cc290c6cca134574146b2d5a6a55dddf5c3881941044c8edffe556060d459fa23013997b3a5e998f6a714fa9604d5ba5169f905181d833f6075bd46a
SSDEEP

1536:rpULjce8NLLAAVGfTEz4p/3NX7FYaQBbDbJjHO0c3pFTR4zs50zu8GJrSM/uH1Vl:j5XAAVyJ/diaQxbJju0+08cuFronU9i

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
de132ffb359358defb448c59e309392e_JaffaCakes118

Files

de132ffb359358defb448c59e309392e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

c32e6dfa4572a4c02fb1ddc4bd49b112

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetClipboardOwner
LoadIconA
LoadCursorA
GetMessageA
EnableScrollBar
IsDlgButtonChecked
GetWindowLongA
RegisterClassExA
SetWindowTextA
BeginPaint
CheckDlgButton
EndPaint
CreateWindowExA
ShowWindow
UpdateWindow
TranslateMessage
DispatchMessageA

gdi32

CreatePatternBrush
PolyBezier
DeleteObject
SetBkMode
GetStockObject
CreateBrushIndirect

ole32

OleSetContainedObject
CoGetObjectContext
StgIsStorageFile
CoUnmarshalHresult
CoWaitForMultipleHandles

oleaut32

SafeArrayAllocDescriptor
SafeArrayDestroyDescriptor

kernel32

DeleteCriticalSection
HeapDestroy
InterlockedDecrement
GetStartupInfoA
LeaveCriticalSection
GetModuleHandleA
GetCommandLineA
HeapAlloc
HeapCreate
QueryPerformanceCounter
EnterCriticalSection
InitializeCriticalSection
GetLastError
GetFileAttributesA
HeapFree
GetACP

Sections

.text
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE