JaffaCakes118_318b88ac72cb1412cf6a4dd3fdd91d0e | Triage

Sharing

General

Target

JaffaCakes118_318b88ac72cb1412cf6a4dd3fdd91d0e
Size

187KB
MD5

318b88ac72cb1412cf6a4dd3fdd91d0e
SHA1

23a3c3c2495e05977e8caad4c9796abe70f8934b
SHA256

12cb7a2effe5cdb15deddb0cb549eba973390e08f9faa83a20f3cb8a1a9804d6
SHA512

8020c9294e1c0d57efdff46d5ccdec3ffc39910870bda75aa4f6ce69043427eb1fad060dfb39cc8b6b7a49b63a1778135043eeaebb378528143dec100dc74d06
SSDEEP

3072:DGZsPCOzJthGdFsPjGuBw+I96BAot8zFPwGs/7/Dx3wwGduVBPU7KFm:bhthGkBVNBAoqiA18VBuKF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_318b88ac72cb1412cf6a4dd3fdd91d0e

Files

JaffaCakes118_318b88ac72cb1412cf6a4dd3fdd91d0e
.exe windows:4 windows x86 arch:x86

c7d2da75e9c332403749ab2cba8e3818

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

rpcrt4

I_RpcFreeBuffer
UuidCreate

winmm

timeGetTime

user32

RedrawWindow
ClipCursor
DestroyMenu
TrackPopupMenuEx
FindWindowA
CreatePopupMenu
GetDesktopWindow

kernel32

FlushInstructionCache
GetVersionExA
LocalAlloc
LoadLibraryW
ExitProcess
SetLocaleInfoW
ExitProcess
LocalFree
GetModuleFileNameA

gdiplus

GdipGetImageHeight
GdipGetImageWidth
GdipGetImagePixelFormat
GdipCreateBitmapFromFile
GdipDisposeImage

msimg32

AlphaBlend
TransparentBlt

gdi32

CreateDIBSection
GetObjectType
BitBlt
CreatePen
LineTo
SelectObject
DeleteDC
SetStretchBltMode
CreateDCW
StretchBlt
CreateCompatibleDC
CreateBitmap

Sections

.text
Size: 117KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ