e2aa52616430895f3e30d792d0b60c73_JaffaCakes118 | Triage

Sharing

General

Target

e2aa52616430895f3e30d792d0b60c73_JaffaCakes118
Size

77KB
MD5

e2aa52616430895f3e30d792d0b60c73
SHA1

528d68dae8bffe88beaada0d9151eab26308d478
SHA256

4f4d1f89db04cd48db8d8bc7617c5392d8b084b9d24540a44bb25fd37711aee5
SHA512

5f6c8f343b527fa9a8763705a077aaa02ecc1edaf3383d92e517d7c354ca6778943379ecd03d0f4c695eaf41ccc4ce5081805e6ee0c803c9877979568876226a
SSDEEP

1536:o8clh2IyrxISudkm+NOATlRCyVXRY47QmDhHLjpiEqKH1c/J:rRz2SuCNOATHQ47QmtHLje41cB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e2aa52616430895f3e30d792d0b60c73_JaffaCakes118

Files

e2aa52616430895f3e30d792d0b60c73_JaffaCakes118
.exe windows:5 windows x86 arch:x86

f1b52083ad1f39bd60a531a030f4aeef

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetCursorPos
CreateMenu
InsertMenuA
GetDesktopWindow
GetWindow
DestroyMenu
GetActiveWindow
GetDC
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA
PeekMessageA
GetCursor
GetFocus

gdi32

CreateBitmap
GetCurrentObject
DeleteObject
SelectObject

shlwapi

ord437

oleaut32

VarBoolFromStr

kernel32

GetSystemTime
GetLocalTime
InitializeCriticalSection
EnterCriticalSection
GlobalAlloc
GetSystemInfo
LeaveCriticalSection
DeleteCriticalSection
GlobalFree
FreeLibrary
GetLastError
HeapAlloc
HeapCreate
LoadLibraryA

Sections

.text
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE