0269f4caffe86c3af91483d101ad7ecd_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0269f4caffe86c3af91483d101ad7ecd_JaffaCakes118
Size

160KB
MD5

0269f4caffe86c3af91483d101ad7ecd
SHA1

d56d0c018ecbe3bad33e991d3a20c16f4e4a87cb
SHA256

74f50bcda12c71a0731715cc8cb3d8354a7d52f7c90f9332dee5fc27295893dd
SHA512

a5f475ac7f5dcf8f1c69181ff485a09f4d95c3fd0d11ccba65a836500bf50f10f3be32de4e9891813a23400c3149c5c643581a35ba1b5549c84dfe5f8bc00912
SSDEEP

3072:0Tkng2tfYHFnWrBjDbWfmMCUtwk0t6exETpFesEji8Lok6Lp047w7wFzeY:HXNmFnk/Y2UttBnndB4gt04nFX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0269f4caffe86c3af91483d101ad7ecd_JaffaCakes118

Files

0269f4caffe86c3af91483d101ad7ecd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

29fc7a703f248e228293d12d406851e8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_DragMove
ImageList_DragLeave
ImageList_DragEnter

gdiplus

GdipCreateBitmapFromFile
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImageWidth
GdipDisposeImage

ole32

CoUninitialize
CoInitialize
CoFreeUnusedLibraries
StringFromGUID2
CoCreateInstance

winmm

timeGetTime

msimg32

AlphaBlend
TransparentBlt

kernel32

SetHandleInformation
LocalFree
TransmitCommChar
GetVersionExA
EnumResourceNamesW
ExitProcess
ExitProcess
LocalAlloc
LoadLibraryW
GetModuleFileNameA

gdi32

LineTo
CreatePen
DeleteDC
SelectObject
CreateCompatibleDC
CreateDCW
GetObjectType
BitBlt
StretchBlt
CreateDIBSection
SetStretchBltMode
CreateBitmap

user32

DestroyMenu
FindWindowA
RedrawWindow
TrackPopupMenuEx
CreatePopupMenu
ClipCursor
GetDesktopWindow

Sections

.text
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsr
Size: 512B - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ