e5f808af24a574f4d9e12445ae50e799_JaffaCakes118 | Triage

Sharing

General

Target

e5f808af24a574f4d9e12445ae50e799_JaffaCakes118
Size

94KB
MD5

e5f808af24a574f4d9e12445ae50e799
SHA1

6d6d905a1e89cf5f674964b550e3f6512f54546b
SHA256

f7c3411af08ab842e09fd78c19b47bb89a3ae1ed594b730696fbb69d4c6073fd
SHA512

cfcec4b0a4f359be0795b5b620a7b4ca7a864dcf4e19afa315e80742ca7d898322e5ba04b0cca92e1059fb57b169e918fe26acfea987ce118d7eeae994a47017
SSDEEP

1536:a2M3KuJZM/sk05VYmt+8qtXWnG4dIMfZ9RNS0iGDrRdUGfrqRy/fDm:a2M6ufos5VYeqIG0/3N9iGDrRdUGfL/b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e5f808af24a574f4d9e12445ae50e799_JaffaCakes118

Files

e5f808af24a574f4d9e12445ae50e799_JaffaCakes118
.exe windows:5 windows x86 arch:x86

d4a049f01eeaa001acaaa0fdaa5a97cc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowLongA
DeleteMenu
CreateMenu
GetCursor
CheckMenuItem
DestroyMenu
GetCursorPos
LoadIconA
LoadCursorA
RegisterClassExA
PeekMessageA
BeginPaint
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA
SetWindowTextA
EndPaint

gdi32

GetROP2
Rectangle
GetStockObject
TextOutA
DeleteObject
CreateBitmap

oleaut32

SafeArrayRedim

comctl32

ord321
ord322
ord325
ord320
ord13

kernel32

DeleteCriticalSection
GetModuleHandleA
LeaveCriticalSection
GlobalFree
GetSystemInfo
GetCPInfo
lstrlenA
EnterCriticalSection
InitializeCriticalSection
FreeLibrary
GetSystemTime
LoadLibraryA
GetLocalTime
GetLastError
HeapAlloc
HeapCreate
GlobalAlloc

Sections

.text
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE