eb893eab922ab99304ed67640a90a914_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

eb893eab922ab99304ed67640a90a914_JaffaCakes118
Size

181KB
MD5

eb893eab922ab99304ed67640a90a914
SHA1

4e64fa18f3052dec8b328e0ef3cae2262343c331
SHA256

44f48d71abc924d9570a5f51146bb0fdb850af1ee9e648b1384f8148b0b70f81
SHA512

177f8db8cf1377ba167a8612ac4780da8f41ac6da0b0335cd2764b8071a8bcb04e07c97616668ca38e30e2032214fce9eef1295a755a53ce398578c4b470daeb
SSDEEP

3072:T9zoQHdB+O615UV+h6WTNGEc7EZnZac/BKRrAK2Ww5G/tx1EHu3:TiOo9154+hXGX7kn7QRrASB/31aM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
eb893eab922ab99304ed67640a90a914_JaffaCakes118

Files

eb893eab922ab99304ed67640a90a914_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b34d381837fe0c95fd4e30319f8ab404

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetTime

kernel32

FlushInstructionCache
LoadLibraryW
GetVersionExA
LocalAlloc
ExitProcess
SetLocaleInfoW
LocalFree
ExitProcess
GetModuleFileNameA

msimg32

AlphaBlend
TransparentBlt

user32

FindWindowA
ClipCursor
CreatePopupMenu
TrackPopupMenuEx
RedrawWindow
DestroyMenu
GetDesktopWindow

gdiplus

GdipGetImageHeight
GdipGetImageWidth
GdipGetImagePixelFormat
GdipCreateBitmapFromFile
GdipDisposeImage

rpcrt4

I_RpcFreeBuffer
UuidCreate

Sections

.text
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 924B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 71KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 388KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ