JaffaCakes118_a2a4457cabf47bdd7b0da0bbc351b0ec | Triage

Sharing

General

Target

JaffaCakes118_a2a4457cabf47bdd7b0da0bbc351b0ec
Size

182KB
MD5

a2a4457cabf47bdd7b0da0bbc351b0ec
SHA1

341eadfbb0114372700fe0d19830ff476c0fa67c
SHA256

66a2444b0af09d949fe609746d6ae8a064faea15d0f5c06383b6aa27731f8783
SHA512

f8dc1fd90fd4ee1585c4f21e8d5abe1cee75b7ff22d8b245ee0ecb48806862cf52ac7a745ec2bfb8ca055fe11cda1554cdc7679cb5d47af5654eb5960645feb6
SSDEEP

3072:WDpoB9Zj/CeB7CsVyttsw89wHFTU9kseI8HCSVgcA8UTPwgmtEhT57lIv0G1PIT:WiB9Zj/P3Vyttsm49ksetdETPEtEzRIU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_a2a4457cabf47bdd7b0da0bbc351b0ec

Files

JaffaCakes118_a2a4457cabf47bdd7b0da0bbc351b0ec
.exe windows:4 windows x86 arch:x86

2e9393dddabb69770d5326cfdfff0592

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DestroyMenu
FindWindowA
ClipCursor
RedrawWindow
CreatePopupMenu
TrackPopupMenuEx
GetDesktopWindow

winmm

timeGetTime

ole32

CoInitialize
StringFromGUID2
CoFreeUnusedLibraries
CoUninitialize
CoCreateInstance

gdiplus

GdipCreateBitmapFromFile
GdipGetImageWidth
GdipGetImagePixelFormat
GdipGetImageHeight
GdipDisposeImage

gdi32

StretchBlt
LineTo
SelectObject
BitBlt
CreatePen
GetObjectType
DeleteDC
CreateDCW
CreateCompatibleDC
SetStretchBltMode
CreateDIBSection
CreateBitmap

rpcrt4

I_RpcFreeBuffer
UuidCreate

msimg32

AlphaBlend
TransparentBlt

comctl32

ImageList_DragMove
ImageList_DragLeave
ImageList_DragEnter

kernel32

FlushInstructionCache
LoadLibraryW
ExitProcess
GetVersionExA
ExitProcess
SetLocaleInfoW
LocalAlloc
LocalFree
GetModuleFileNameA

Sections

.text
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 388KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ