4213c8f262c94f66b074ef6e64ff02be_JaffaCakes118 | Triage

Sharing

General

Target

4213c8f262c94f66b074ef6e64ff02be_JaffaCakes118
Size

92KB
MD5

4213c8f262c94f66b074ef6e64ff02be
SHA1

bf0c64b61addb6bf0613782e6a551338fe2fe5a1
SHA256

7a1bf4aa5f15bc8b7ad60add7b1276ac03d9587d0953de1edafabf1d1b08f262
SHA512

90e691174f5a392f34a658d1a66019c789387c4649ee1d3a2cd2bee6a85ab9c4652323e9b4f35444bed959590a744ca1f22c1f9cb25ec564f2a8c460c43890be
SSDEEP

1536:ZwFiSJdhu0PYDozNieYlDpA72cUBXrlzRCv6tOyi3A8CI0M59Em+6aEvdfNKqN6P:ZX6dhu0wDop0Sop8v6syQD0MQX6aElfy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4213c8f262c94f66b074ef6e64ff02be_JaffaCakes118

Files

4213c8f262c94f66b074ef6e64ff02be_JaffaCakes118
.exe windows:5 windows x86 arch:x86

8763a323b407fde43b8fa406b019810f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EnableMenuItem
DispatchMessageA
GetSystemMetrics
SetWindowTextA
CheckMenuRadioItem
GetWindowLongA
BeginPaint
LoadIconA
LoadCursorA
RegisterClassExA
EndPaint
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage

gdi32

LineTo
GetBkColor
GetStockObject
CreateSolidBrush
DeleteObject
CreateHatchBrush

ole32

ProgIDFromCLSID
OleGetAutoConvert
OleRegGetUserType
CoInitialize
StringFromGUID2

oleaut32

SafeArrayAllocDescriptor
SafeArrayDestroyDescriptor
CreateErrorInfo

kernel32

GetModuleHandleA
QueryPerformanceCounter
GetStartupInfoA
InterlockedIncrement
HeapFree
GetLastError
EnterCriticalSection
InitializeCriticalSection
HeapAlloc
HeapCreate
GetFileSize
GetVersionExA
HeapDestroy
DeleteCriticalSection
LeaveCriticalSection
GetACP
GetCommandLineA

Sections

.text
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE