JaffaCakes118_256c0507f866d9322cd018286471c44b | Triage

Sharing

General

Target

JaffaCakes118_256c0507f866d9322cd018286471c44b
Size

91KB
MD5

256c0507f866d9322cd018286471c44b
SHA1

3268050d324919e79401884f669df7bf6ab455ff
SHA256

646b3112d97704ee8708dabaaac37b8e3a050831f7fb7b04a81dd88d60e3dabb
SHA512

3681ed834ac3178dd333e1eb3d1b4e53cc68fab59df281309036e4e573b6a8db823eba545e296dea4360eeb5113f08541780254917d409e66f5f89909402d717
SSDEEP

1536:RUHkO5hbc75vVPVafvE/vJHaavY6pdN7Y+2XE80idL3SKbTDuU8Sb39Dshsw9s:aEybcVZVk8ZHaavYIdNE+/8LdL3HDB9w

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_256c0507f866d9322cd018286471c44b

Files

JaffaCakes118_256c0507f866d9322cd018286471c44b
.exe windows:5 windows x86 arch:x86

308544d7aa9d8eec15d094c4f4faa478

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreateMenu
CheckMenuItem
DestroyMenu
EndPaint
GetCursor
DeleteMenu
PeekMessageA
GetMenuItemCount
SetWindowTextA
GetCursorPos
LoadIconA
GetWindowLongA
GetInputState
LoadCursorA
RegisterClassExA
BeginPaint
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA

gdi32

MoveToEx
CreateSolidBrush
DeleteObject
GetStockObject

ole32

RevokeDragDrop
OleIsCurrentClipboard
ProgIDFromCLSID
CoGetCallerTID
CoTestCancel
StringFromCLSID
CoInitialize
CreateILockBytesOnHGlobal

oleaut32

CreateErrorInfo

comctl32

GetMUILanguage

kernel32

GlobalFree
GlobalAlloc
GetModuleHandleA
GetSystemInfo
DeleteCriticalSection
GetEnvironmentStrings
FreeLibrary
GetCPInfo
LoadLibraryA
HeapAlloc
HeapCreate
LeaveCriticalSection
GetLocalTime
EnterCriticalSection
GetLastError
InitializeCriticalSection

Sections

.text
Size: 87KB - Virtual size: 86KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE