JaffaCakes118_a9a56b70ca7e66353ff97d34ff47b5e2 | Triage

Sharing

General

Target

JaffaCakes118_a9a56b70ca7e66353ff97d34ff47b5e2
Size

183KB
MD5

a9a56b70ca7e66353ff97d34ff47b5e2
SHA1

1dbea21c0a281fe892055081b21d792bdf5b1294
SHA256

2e812a315d54636b1f790c3bd72aed265b43ba0b3796c59b57b24332e6486fdb
SHA512

c21e18b82c9bb5a8c6123d17d551e14097a92ac5d999726283a8ba05845593f9bcdd074d1387d40431be78e4a179bc17370a814721d29864f94b17f2e264ea7b
SSDEEP

3072:UEyaHHM3PGN9wsPJEm9NxH2MA6BMlbLyrNunAAdPWlAhfQ6oaKBxNFlhWC7RnFjY:U2HAPGN9wTM5RNrNunAAdzWvBLFlhWCE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_a9a56b70ca7e66353ff97d34ff47b5e2

Files

JaffaCakes118_a9a56b70ca7e66353ff97d34ff47b5e2
.exe windows:4 windows x86 arch:x86

0800ba3248fdb7a751d75f7a8522c837

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetTime

gdiplus

GdipGetImageWidth
GdipGetImageHeight
GdipCreateBitmapFromFile
GdipGetImagePixelFormat
GdipDisposeImage

rpcrt4

I_RpcFreeBuffer
UuidCreate

msimg32

AlphaBlend
TransparentBlt

user32

ClipCursor
DestroyMenu
CreatePopupMenu
RedrawWindow
FindWindowA
TrackPopupMenuEx
GetDesktopWindow

kernel32

FlushInstructionCache
LocalFree
ExitProcess
LocalAlloc
ExitProcess
SetLocaleInfoW
LoadLibraryW
GetVersionExA
GetModuleFileNameA

Sections

.text
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 924B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ