df5a394ad60512767d375647dbb82994_JaffaCakes118 | Triage

Sharing

General

Target

df5a394ad60512767d375647dbb82994_JaffaCakes118
Size

94KB
MD5

df5a394ad60512767d375647dbb82994
SHA1

32d3074fdd2b6745c4e03335c49a4ac7c5e072cb
SHA256

70c2ea2751b524f296bc91d394ee85cbc9bdcea03af6abfecec52f65790227d6
SHA512

27733d2717dd42e45c2b3029f64f2c971f6ce86c9852f478619afb1cff0115d2f7b20cb1382b0a1dcd206b18b6948bae488e847ea571be268a9ab13ceda06233
SSDEEP

1536:joRBVXkOMn6+EB+SwWaIdHdG60vLRVysjbgHmTbMTdPuvJgIjyKDhlGswtL:jcDa7Y+SwfIdHsvPymsJPGgIjtlx8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
df5a394ad60512767d375647dbb82994_JaffaCakes118

Files

df5a394ad60512767d375647dbb82994_JaffaCakes118
.exe windows:5 windows x86 arch:x86

aadc38b05c294e8fe3ea44ba8570d2b7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetCursor
DeleteMenu
GetMenuItemCount
LoadIconA
LoadCursorA
RegisterClassExA
CreateMenu
GetCursorPos
GetWindowLongA
CheckMenuItem
PeekMessageA
SetWindowTextA
DestroyMenu
BeginPaint
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA
EndPaint

gdi32

TextOutA
GetStockObject
DeleteObject
CreateBitmap
GetROP2
Rectangle

oleaut32

VarUI8FromDec
OleSavePictureFile

comctl32

ord321
ord13
ord320
ord325
ord322

kernel32

GetLastError
GlobalAlloc
GetModuleHandleA
lstrlenA
GlobalFree
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
FreeLibrary
GetCPInfo
LoadLibraryA
GetSystemTime
GetLocalTime
HeapAlloc
HeapCreate
GetSystemInfo

Sections

.text
Size: 85KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE