07d26682d45dea50e5ff9221d52971c7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

07d26682d45dea50e5ff9221d52971c7_JaffaCakes118
Size

163KB
MD5

07d26682d45dea50e5ff9221d52971c7
SHA1

79521e595f95989b92d7105a2f67e9eb9ef04ca1
SHA256

f6a597bbc33fb93e3a6633bc6aed0f301562a01141edee9929fabc193cf583ee
SHA512

b801a7bc3cffd70235b0b846e7829c0d002e0b73a6a215a8aab729ecf9e5a129d999a1e87860777702a8ef8f14a991443d8d17007a56e935c826ff7b41dd3306
SSDEEP

3072:ilm0IaIsClQ56hgxavkv79wXmIL+tdYwnATYyeBBDGkOvCBRONSlkr:ilLDmQ56h/vy9w2I4YWATYR5LOvC/OyI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
07d26682d45dea50e5ff9221d52971c7_JaffaCakes118

Files

07d26682d45dea50e5ff9221d52971c7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bf80f45e8a27e1844b141363c2ed48cb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_DragMove
ImageList_DragLeave
ImageList_DragEnter

user32

ClipCursor
TrackPopupMenuEx
RedrawWindow
FindWindowA
CreatePopupMenu
DestroyMenu
GetDesktopWindow

gdiplus

GdipGetImagePixelFormat
GdipGetImageWidth
GdipGetImageHeight
GdipCreateBitmapFromFile
GdipDisposeImage

msimg32

AlphaBlend
TransparentBlt

ole32

CoInitialize
CoFreeUnusedLibraries
CoUninitialize
StringFromGUID2
CoCreateInstance

kernel32

GetHandleInformation
GetVersionExA
TransmitCommChar
LoadLibraryW
EnumResourceNamesW
ExitProcess
LocalAlloc
ExitProcess
LocalFree
GetModuleFileNameA

gdi32

GetObjectType
CreateCompatibleDC
SelectObject
CreatePen
SetStretchBltMode
CreateDIBSection
BitBlt
StretchBlt
LineTo
DeleteDC
CreateDCW
CreateBitmap

winmm

timeGetTime

Sections

.text
Size: 122KB - Virtual size: 122KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsr
Size: 512B - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ