JaffaCakes118_eac20e6714afd94bcb0f6b0d10010d4b | Triage

Sharing

General

Target

JaffaCakes118_eac20e6714afd94bcb0f6b0d10010d4b
Size

202KB
MD5

eac20e6714afd94bcb0f6b0d10010d4b
SHA1

8fc1c21d5e69db476798b3efdcfd7a9cea57a320
SHA256

4dbab0b24523e5434380ef8b78dfb8e4d72c9470b0e7c25358a5e298c0ca1a23
SHA512

adff2d8f383e41fe8bfa446e006a4da80ec59688202bfadebe75a899459f81da09443f397fa508c2b5802f24b1e4d99bde072b07eb7dd77b5f786e5f0ec7b42d
SSDEEP

6144:7Ma4cJT0Qg2jn7BevMIqEzhH1+8wy4LN6E9P1k66CmzC:74cJT0QgwnhczhH1ky6wE9POCI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_eac20e6714afd94bcb0f6b0d10010d4b

Files

JaffaCakes118_eac20e6714afd94bcb0f6b0d10010d4b
.exe windows:4 windows x86 arch:x86

d3df128222f8357c5eb8b03e375d2267

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

oleacc

LresultFromObject
CreateStdAccessibleObject

user32

ReleaseDC
GetWindowInfo
IsWindow
LoadCursorA
SetWindowPos
FillRect
SetCursor
GetSysColor
GetDlgItem
GetWindowLongA
GetDC
ReleaseCapture
SetWindowLongA
MoveWindow
SetCapture

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

winmm

mciSendCommandA
sndPlaySoundA

ole32

CoTaskMemFree
ProgIDFromCLSID
StringFromCLSID

shell32

SHGetPathFromIDListA
SHGetMalloc
SHGetSpecialFolderLocation

kernel32

SetTapePosition
GetLocalTime
ClearCommError
Sleep
GetVersion
InterlockedExchange
EnumResourceNamesA
FindClose
FatalExit
GetCurrentProcessId
GetWindowsDirectoryA
FindFirstFileA

Sections

.text
Size: 177KB - Virtual size: 177KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lib
Size: 512B - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ