dfcf13297626243a3aac1759c8662ffe_JaffaCakes118 | Triage

Sharing

General

Target

dfcf13297626243a3aac1759c8662ffe_JaffaCakes118
Size

25KB
MD5

dfcf13297626243a3aac1759c8662ffe
SHA1

b88212372503ac3e8a9aaf0406c8b50b8ce06bf0
SHA256

7a1879cc1642f54ac965b1d43e21b41eeb076b3785889e3d9f674686e52e4ea7
SHA512

87ee62275552669baea265e8401e4ef61790a2b50158aeda28c20a7cfade5837e2766f89b52c664f2d81544ebfde548f5cc7e812a6556cf7330a7db13e506071
SSDEEP

384:YEfEIr9Jxjlk62/pPkxWqC6B4JNWNd1VyVOtlKMWqv8z3HVi:YEfVzxx0qC69L1V1tzWg+3HI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dfcf13297626243a3aac1759c8662ffe_JaffaCakes118

Files

dfcf13297626243a3aac1759c8662ffe_JaffaCakes118
.exe windows:1 windows x86 arch:x86

d4eafc01e26370ab7deedc48d8ec7dff

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetDeviceCaps
FloodFill
PathToRegion
PtInRegion
GdiStartDocEMF
RectInRegion
PolyPatBlt
GetTextColor
GetPixelFormat

shell32

SHEmptyRecycleBinA
StrRStrA
SHFileOperation
Control_RunDLLW
SHFileOperation
SHGetDesktopFolder
RealShellExecuteExW

user32

CopyImage
ChangeMenuW
CallMsgFilterW
CreateMenu

Sections

��t
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE