e44d8eb470ea100b431a5ff248789788_JaffaCakes118 | Triage

Sharing

General

Target

e44d8eb470ea100b431a5ff248789788_JaffaCakes118
Size

93KB
MD5

e44d8eb470ea100b431a5ff248789788
SHA1

8658c3178995a0e87076b00183a9dddab2a6dd64
SHA256

3630c4a784e4dd14366787382b75fe2bd4503ed1c81e76834e613867ecdb1009
SHA512

bdd14462db24ba4c0d2729cc693940e9ca6590ad686d1e4b15b00182a34af24c4882a35dbec8b4a950b806e9e7be02648cd1ee0ef6dcd9e318b34cc64e8f6fa6
SSDEEP

1536:FGftWceYsVml4fXscslhxSHCGDobJ/73cbDFAWXBUUvuaaMgy:Ift3eml+0lCHzDobJ/73cFXXBJWmT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e44d8eb470ea100b431a5ff248789788_JaffaCakes118

Files

e44d8eb470ea100b431a5ff248789788_JaffaCakes118
.exe windows:5 windows x86 arch:x86

ad14ea0eceddb5e14191951a7a34efbf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreatePopupMenu
EndPaint
EnableMenuItem
SetWindowTextA
GetWindowLongA
DestroyMenu
CheckMenuRadioItem
LoadIconA
LoadCursorA
RegisterClassExA
BeginPaint
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA

gdi32

CreateSolidBrush
CreateHatchBrush
DeleteObject
GetStockObject
MoveToEx
GetBkColor

ole32

CreateObjrefMoniker
GetConvertStg
CreateItemMoniker
ProgIDFromCLSID
OleRegEnumVerbs
CoInitialize
StringFromGUID2

oleaut32

CreateErrorInfo

kernel32

GetModuleHandleA
HeapFree
GetStartupInfoA
GlobalFree
LoadLibraryA
GlobalAlloc
GetACP
GetVersionExA
GetCommandLineA
HeapAlloc
HeapCreate
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
HeapDestroy
GetLastError
FreeLibrary

Sections

.text
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE