JaffaCakes118_04450caf764bd461dcd0ccb198c1b55d | Triage

Sharing

General

Target

JaffaCakes118_04450caf764bd461dcd0ccb198c1b55d
Size

187KB
MD5

04450caf764bd461dcd0ccb198c1b55d
SHA1

15366f466350b8b98dade6488e3b5a9f0214aa79
SHA256

28ba9c5739e19baf5dc58f5ce8669bc18786865c476565430e29d55474d23973
SHA512

8d0c6919444303accbc3891c073d19503c4c3ecadf2527e83ac14b1d6563d5324c2886b3de0263eb1ef2f0964568e0caaefea9ad7fbb2e65bbf44bf16e03866c
SSDEEP

3072:yAuWzkD8lxQzuXPO5zdtVXvWKGUp3pyQX1yCMFrxjIW8Q+WhdakYleB6hYM5zCrd:NhkobQzuX2lfV/WOp34QjMPsW+SdakYa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_04450caf764bd461dcd0ccb198c1b55d

Files

JaffaCakes118_04450caf764bd461dcd0ccb198c1b55d
.exe windows:4 windows x86 arch:x86

fc689a41f380809572d645472bcf4651

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

rpcrt4

I_RpcFreeBuffer
UuidCreate

msimg32

AlphaBlend
TransparentBlt

winmm

timeGetTime

gdiplus

GdipCreateBitmapFromFile
GdipGetImageHeight
GdipGetImageWidth
GdipGetImagePixelFormat
GdipDisposeImage

user32

TrackPopupMenuEx
CreatePopupMenu
RedrawWindow
DestroyMenu
FindWindowA
ClipCursor
GetDesktopWindow

kernel32

FlushInstructionCache
GetVersionExA
ExitProcess
LocalAlloc
ExitProcess
SetLocaleInfoW
LocalFree
LoadLibraryW
GetModuleFileNameA

Sections

.text
Size: 117KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 924B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ