e6fdbb08882998f0155c901630b571d8_JaffaCakes118 | Triage

Sharing

General

Target

e6fdbb08882998f0155c901630b571d8_JaffaCakes118
Size

93KB
MD5

e6fdbb08882998f0155c901630b571d8
SHA1

18e14b0b1172dde78b8d4813bf1e8557e94a971c
SHA256

cc0dd3bf3b2e7f7c50b2f258badf1717e374402305a24df8f13720a63b6a9d39
SHA512

31591d71c106ecbafc803a9a902ab30001d4ba83102f9fdb8b394cb67f1a90bfcb4a1b721659b09fb1024aa555dba118c4180177ce05b07e8fad19f2e570e0c1
SSDEEP

1536:kKVnV8W2K/sbfLLf/rbOFssPO500EXauJO8mH5oINEDkAGzZG:rWNYofLT/vOY00yaW2HukAGw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e6fdbb08882998f0155c901630b571d8_JaffaCakes118

Files

e6fdbb08882998f0155c901630b571d8_JaffaCakes118
.exe windows:5 windows x86 arch:x86

810f77ca89d56777c8808434c68b0052

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DeleteMenu
LoadIconA
LoadCursorA
GetMenuItemCount
GetCursor
CheckMenuItem
DispatchMessageA
TranslateMessage
EndPaint
RegisterClassExA
PeekMessageA
SetWindowTextA
GetWindowLongA
GetCursorPos
BeginPaint
CreateMenu
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
DestroyMenu

gdi32

CreateBitmap
GetROP2
GetStockObject
DeleteObject
Rectangle

ole32

CoGetMalloc
CreateBindCtx
CoInitialize
ReadClassStm

lz32

LZInit

kernel32

InitializeCriticalSection
EnterCriticalSection
FreeLibrary
LeaveCriticalSection
DeleteCriticalSection
LoadLibraryA
GlobalAlloc
GetModuleHandleA
GlobalFree
GetLastError
GetSystemTime
GetCPInfo
GetLocalTime
HeapAlloc
HeapCreate
GetSystemInfo

Sections

.text
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE