JaffaCakes118_6b96ac0f56cd1e8c8a89e39e9177ea6c | Triage

Sharing

General

Target

JaffaCakes118_6b96ac0f56cd1e8c8a89e39e9177ea6c
Size

182KB
MD5

6b96ac0f56cd1e8c8a89e39e9177ea6c
SHA1

49f7ec1695a91edc848566dfc6c4e7ff6e1fbb2f
SHA256

0c0ce74f9ae54ac28cda685d0f3bca939432208fd087beb38ee979be19d8606c
SHA512

203c104c10bc45c55b286a9aa0d7f537253fffbb31cfcf766b866fedfb2d621124c4c7d9a64850e50e1654be0eedaeaff87ed12d7889d5a7acabd68afa49b751
SSDEEP

3072:fRbf0RbQZFWc8gY1OWpnhzn8lKoo3lygF5nOzRg8XGDu2ROnWhW3fn:m4wJ1jnhT8TYlXLnO3a+nWg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_6b96ac0f56cd1e8c8a89e39e9177ea6c

Files

JaffaCakes118_6b96ac0f56cd1e8c8a89e39e9177ea6c
.exe windows:4 windows x86 arch:x86

98e670eea24dd924d25ca71f7d63393c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

StgCreateDocfile
StgOpenStorage

msvfw32

ICSendMessage
ICClose
ICOpen
ICDecompress

user32

SetParent
DestroyMenu
CreatePopupMenu
ClipCursor
InvalidateRect
SetCursor
RedrawWindow
IsWindow
GetDesktopWindow
EnableWindow
TrackPopupMenuEx
GetFocus
SetWindowPos
LoadCursorW
PtInRect

kernel32

GetShortPathNameW
GlobalFree
GetProcAddress
LoadLibraryW
SetHandleInformation
CloseHandle
EnumResourceTypesW
GetModuleHandleW
CreateFileW
ExitProcess
GetCurrentThreadId
GetLastError
UnhandledExceptionFilter
GetCurrentProcessId
GetVersionExW

Sections

.text
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 372KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ