f61516fa84aa096362df55d41dfb96cc_JaffaCakes118 | Triage

Sharing

General

Target

f61516fa84aa096362df55d41dfb96cc_JaffaCakes118
Size

92KB
MD5

f61516fa84aa096362df55d41dfb96cc
SHA1

45cd922c4f79533e0ae9214194cad34a5140d11a
SHA256

251a00c828bf67ddc2560fe6d5e30833071f373eccb11931ca072328aca9d3c0
SHA512

2dbced7c93bd626a312df7119c898e0ebe8592e6a4d90fca8ab01f7941e3cfd2e0317e5e116400697b925980e11f48161df75adf474b34fcdf5e53fc329a700f
SSDEEP

1536:3RZdPSMAO8CTbG5WDBcnML67ZmrZ+QEs0DABt7UdT+RoW8NKRwXzui46rtelcF:BzPPAO80bSWCnMmIFEEqAoyoyAt5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f61516fa84aa096362df55d41dfb96cc_JaffaCakes118

Files

f61516fa84aa096362df55d41dfb96cc_JaffaCakes118
.exe windows:5 windows x86 arch:x86

0633f396f4bf2ed96f3791581ac15532

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetCursorPos
GetCursor
CreateMenu
DeleteMenu
CheckMenuItem
DestroyMenu
PeekMessageA
GetMenuItemCount
LoadIconA
LoadCursorA
RegisterClassExA
BeginPaint
SetWindowTextA
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA
EndPaint

gdi32

Rectangle
DeleteObject
GetROP2
GetStockObject
CreateBitmap

shlwapi

AssocCreate

comctl32

ord13
ord320
ord325
ord322
ord321

kernel32

DeleteCriticalSection
GlobalFree
LeaveCriticalSection
FreeLibrary
GlobalAlloc
GetModuleHandleA
EnterCriticalSection
InitializeCriticalSection
GetSystemInfo
GetCPInfo
GetLastError
GetSystemTime
HeapAlloc
HeapCreate
LoadLibraryA

Sections

.text
Size: 83KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE