181f94cc4276b777aea6a4ab115aad81_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

181f94cc4276b777aea6a4ab115aad81_JaffaCakes118
Size

172KB
MD5

181f94cc4276b777aea6a4ab115aad81
SHA1

6960433e782d78b871f00d63ed1655ce163e1e66
SHA256

e0eacf9e1ab7b2b338dfdf2bdc0040795935b223f4be4a1a4078f46a8ed40fb5
SHA512

09593360ef079ccba5e48ea0139ab0efa7b16bec1596e2ab1124e8aded1d8f36b7126f807e9b07a3e0962525070698baa56614dea1f42eeda34ed514850c5296
SSDEEP

3072:AYQLhiWUicx99W7lcZsClwa2NAs5N+GNKWta2Kk0f9fq8ndCINWtx:AYQLhpUc1ClLCJJsOUtdH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
181f94cc4276b777aea6a4ab115aad81_JaffaCakes118

Files

181f94cc4276b777aea6a4ab115aad81_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6ddbfde30d50064e3a8c865f6cce36e7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

BitBlt
CreateDIBSection
CreateDCW
CreatePen
SetStretchBltMode
StretchBlt
SelectObject
GetObjectType
CreateCompatibleDC
DeleteDC
LineTo
CreateBitmap

user32

DestroyMenu
CreatePopupMenu
ClipCursor
FindWindowA
RedrawWindow
TrackPopupMenuEx
GetDesktopWindow

msimg32

AlphaBlend
TransparentBlt

winmm

timeGetTime

comctl32

ImageList_DragMove
ImageList_DragLeave
ImageList_DragEnter

ole32

CoFreeUnusedLibraries
CoInitialize
StringFromGUID2
CoUninitialize
CoCreateInstance

gdiplus

GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipCreateBitmapFromFile
GdipDisposeImage

kernel32

GetHandleInformation
LocalAlloc
TransmitCommChar
LoadLibraryW
EnumResourceNamesW
ExitProcess
ExitProcess
GetVersionExA
LocalFree
GetModuleFileNameA

Sections

.text
Size: 127KB - Virtual size: 126KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsr
Size: 512B - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ