f4037f9bc44a64fb7a6b2ff33b0cdcdd_JaffaCakes118 | Triage

Sharing

General

Target

f4037f9bc44a64fb7a6b2ff33b0cdcdd_JaffaCakes118
Size

93KB
MD5

f4037f9bc44a64fb7a6b2ff33b0cdcdd
SHA1

bb8df6c685ef8fe48d8dd4e54f956b871697141e
SHA256

ef61ee910d2bfac44776ef8003576fc131167dbdc8cbff8358d525ceee438ddb
SHA512

d5d92879ca04bc6742f6e087daacbcb948251853654e4de92b09cf2f1486aedbcad36ede7393d31fccadcc5196cec580a2a03ba38bb4806924df4e7b6b3607fc
SSDEEP

1536:PYPysOboaSF3K8kDncgcBP8fqsjV0RWa3Qp0Ya7drwakxtFJx:gPy/slKDiP8f3aQ3aOakxr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f4037f9bc44a64fb7a6b2ff33b0cdcdd_JaffaCakes118

Files

f4037f9bc44a64fb7a6b2ff33b0cdcdd_JaffaCakes118
.exe windows:5 windows x86 arch:x86

34230a4799b9bf85cd97de1c6def7de6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CheckMenuRadioItem
SetWindowTextA
EnableMenuItem
EndPaint
GetSystemMetrics
GetWindowLongA
LoadIconA
LoadCursorA
RegisterClassExA
BeginPaint
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA

gdi32

CreateSolidBrush
GetStockObject
CreateHatchBrush
PolylineTo
GetBkMode
DeleteObject

ole32

OleGetAutoConvert
CoInitialize
CoGetCancelObject
CoGetCurrentProcess

oleaut32

SafeArrayAllocDescriptor
SafeArrayDestroyDescriptor

kernel32

InterlockedIncrement
GetACP
GetModuleHandleA
HeapFree
QueryPerformanceCounter
HeapDestroy
GetLastError
GetStartupInfoA
HeapAlloc
HeapCreate
DeleteCriticalSection
LeaveCriticalSection
GetVersionExA
GetCommandLineA
EnterCriticalSection
GetFileSize
InitializeCriticalSection

Sections

.text
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE