e3c5c870c7e332d23af4f8d256224728_JaffaCakes118 | Triage

Sharing

General

Target

e3c5c870c7e332d23af4f8d256224728_JaffaCakes118
Size

93KB
MD5

e3c5c870c7e332d23af4f8d256224728
SHA1

7f0a467540632c5c90173714bfa35fa088feb600
SHA256

d91876e5151f1d83113cb58e343bf2c10083d9a380528a9112485aec6aa94790
SHA512

a841c2bb9e3abde49beb15c09cabe8993b05980e8d2f999d8b80ea1750d5a4816f4763f697b08273e149ddc1d326b66be9ad8cf5042abf10640bacb87dfd0cc5
SSDEEP

1536:td/oTiFfceT0KikA6aXDfkXYQDmq6KJLet82WmInXAHVMs7vZ/Eq5OV1Ms1RhPV:tpo6fceTtAVOYgLeyKInX8jvh55oMsRk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e3c5c870c7e332d23af4f8d256224728_JaffaCakes118

Files

e3c5c870c7e332d23af4f8d256224728_JaffaCakes118
.exe windows:5 windows x86 arch:x86

3a51b800610912093431253d8fc2d098

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowLongA
GetCursorPos
DeleteMenu
SetWindowTextA
LoadIconA
LoadCursorA
RegisterClassExA
CreateMenu
GetMenuItemCount
CheckMenuItem
PeekMessageA
DestroyMenu
BeginPaint
CreateWindowExA
ShowWindow
UpdateWindow
TranslateMessage
DispatchMessageA
GetMessageA
GetCursor
EndPaint

gdi32

TextOutA
GetStockObject
DeleteObject
Rectangle
GetROP2
CreateBitmap

oleaut32

OleSavePictureFile
VarUI8FromDec

comctl32

ord321
ord320
ord325
ord322
ord13

kernel32

LoadLibraryA
GetSystemTime
GlobalAlloc
FreeLibrary
GetLocalTime
lstrlenA
GetSystemInfo
GetModuleHandleA
DeleteCriticalSection
LeaveCriticalSection
GetLastError
EnterCriticalSection
InitializeCriticalSection
HeapAlloc
HeapCreate
GlobalFree

Sections

.text
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE