fbdb2bf7c9e6055627fe770dbe7d9c25_JaffaCakes118 | Triage

Sharing

General

Target

fbdb2bf7c9e6055627fe770dbe7d9c25_JaffaCakes118
Size

93KB
MD5

fbdb2bf7c9e6055627fe770dbe7d9c25
SHA1

67ffe0caf1851db8702f236d658d0e0ed4a7fbf6
SHA256

7dc0bde4e95b3c7c44f36da1e5f00f569b6a6fad7d7b408e3af8f0d10ed722c9
SHA512

05897a70851ca6c8d5fce390cb810c2df9989cf06d4a97f1fdcf426d7710ff0a724f4b7903f5645b5987c37e84c8139798e0e5da6b2845998bfad1b77464e353
SSDEEP

1536:A5RYkMPzSW39mxmBuEVr/FFWQOfPyjYzJ/LcuWRS7jDtIOdXdGmjJFRWU+A4q:A5RLMPzScm2VryQ8oecuaS/VM2JFwXAp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fbdb2bf7c9e6055627fe770dbe7d9c25_JaffaCakes118

Files

fbdb2bf7c9e6055627fe770dbe7d9c25_JaffaCakes118
.exe windows:5 windows x86 arch:x86

de03d105376cb5b01965cd539127aa0e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DeleteMenu
GetCursorPos
TranslateMessage
GetMessageA
GetWindowLongA
CreateMenu
DispatchMessageA
DestroyMenu
CheckMenuItem
PeekMessageA
BeginPaint
GetMenuItemCount
GetCursor
EndPaint
LoadIconA
LoadCursorA
RegisterClassExA
CreateWindowExA
ShowWindow
UpdateWindow
SetWindowTextA

gdi32

Rectangle
CreateBitmap
GetStockObject
DeleteObject
GetROP2

shlwapi

PathIsUNCA

ole32

CoInitialize
CreateBindCtx

comctl32

ord17

lz32

LZInit

kernel32

LoadLibraryA
FreeLibrary
GetSystemInfo
GetLastError
DeleteCriticalSection
GetModuleHandleA
GlobalAlloc
GetCPInfo
GlobalFree
LeaveCriticalSection
GetSystemTime
EnterCriticalSection
InitializeCriticalSection
HeapAlloc
HeapCreate
GetLocalTime

Sections

.text
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE