f52e4779bf1608a1f97688561db7b98a_JaffaCakes118 | Triage

Sharing

General

Target

f52e4779bf1608a1f97688561db7b98a_JaffaCakes118
Size

93KB
MD5

f52e4779bf1608a1f97688561db7b98a
SHA1

2fce4f800756ef9dcea503e569a19a0c9ad33714
SHA256

106a9dff16c44328f9e1fc5f3e2158d82521846f00a36e079f5978a8711fb19f
SHA512

fddbcce4cafd258727c1d3ae03ca1fb36e986ef646043b1ad4139acf2170ac2caacb91e764c50cd6a807ed2d0d224381ed837f599ccde88107770513a21bf3da
SSDEEP

1536:jIOdMO0QfzK0DElTWdqLdNpdyJTapX1ZUUp2TNsO6t6RTU1UNAmup2Th06q8vix4:0OvK0aTWdAbsJTaBFqz6gXNA5p2To8vV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f52e4779bf1608a1f97688561db7b98a_JaffaCakes118

Files

f52e4779bf1608a1f97688561db7b98a_JaffaCakes118
.exe windows:5 windows x86 arch:x86

a40e780eff3dc754a729a9f74fbe977b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetWindowTextA
LoadIconA
LoadCursorA
RegisterClassExA
CreatePopupMenu
GetWindowLongA
EndPaint
CheckMenuRadioItem
DestroyMenu
BeginPaint
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA
EnableMenuItem

gdi32

CreateHatchBrush
CreateSolidBrush
GetBkColor
MoveToEx
DeleteObject
GetStockObject

ole32

ProgIDFromCLSID
CreateItemMoniker
CoInitialize
GetConvertStg
StringFromGUID2
CreateObjrefMoniker
OleRegEnumVerbs

oleaut32

CreateErrorInfo

kernel32

HeapFree
HeapDestroy
GetACP
GetStartupInfoA
InterlockedIncrement
GetVersionExA
InitializeCriticalSection
GetLastError
HeapAlloc
HeapCreate
GetOEMCP
GetModuleHandleA
DeleteCriticalSection
LeaveCriticalSection
GetCommandLineA
EnterCriticalSection
FindAtomA

Sections

.text
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE