2efb613f90e0784653cd5b0c2b1668c2_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2efb613f90e0784653cd5b0c2b1668c2_JaffaCakes118
Size

113KB
MD5

2efb613f90e0784653cd5b0c2b1668c2
SHA1

aeb3c1a4a3fb7fb292f5c01035ae7d47fdbf5096
SHA256

bb1c1e7746d16875a28968b511030b14fda28f6e2fab5c8f437c3b0e914966f3
SHA512

76b2ecd3363edee3ac693f2740c2483394cf9ffa164df9fcf482d109eddc2e5e517c0590d10d4ebaf21dcb44d92b02b0b0ac1bf1a69bf7d22f49e34a06a2533d
SSDEEP

3072:5bYs+lJ0ohpTgHDdiuWLyGz48AmtJOCNHIqa:5Yu8cHDUUFmFta

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2efb613f90e0784653cd5b0c2b1668c2_JaffaCakes118

Files

2efb613f90e0784653cd5b0c2b1668c2_JaffaCakes118
.exe windows:5 windows x86 arch:x86

c489ac4136726e8ab900e031a565db94

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

RevokeDragDrop
OleFlushClipboard
IsEqualGUID
CreateBindCtx

gdi32

GetObjectA
CreateSolidBrush
DeleteObject
SetMapMode
CreateFontIndirectA
SelectObject
SaveDC
RestoreDC
CreateCompatibleDC
SetTextColor
GetDeviceCaps
GetStockObject

user32

GetSystemMetrics
GetCursorPos
GetSysColor
LoadIconA
TranslateMessage
GetKeyState
GetParent
LoadBitmapA
GetFocus
CharNextA
LoadCursorA
GetDesktopWindow

msvcrt

printf
strlen
remove
time
srand
rand

kernel32

GetSystemTime
GetOEMCP
Sleep
QueryPerformanceCounter
LoadLibraryA
GetTickCount
GetProcAddress
RemoveDirectoryA
GetCurrentProcess
FindClose
CreateTimerQueueTimer
GetACP

advapi32

GetUserNameW

shlwapi

UrlIsW

comctl32

InitCommonControls

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ