ec4cb354623a0096711f4c8b72290f62_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ec4cb354623a0096711f4c8b72290f62_JaffaCakes118
Size

102KB
MD5

ec4cb354623a0096711f4c8b72290f62
SHA1

a0582163bc43adb108ef95f4c6f53067e2b646a4
SHA256

e515afaafb719be6d5b1593ee8e67537af484b75e6e338a140bf7fc29225268b
SHA512

e19254be5a68811e846e932db2f312f7efb56e9eb1f5b8035a2b31d8306a20160b069fa5278b6949797d3017843b9d93cfa733e3465c4335f967170fbbdb899b
SSDEEP

3072:Hht/cLPDGO/Jn18K20jPVy1VPY8xbAVJ:b/QvD2DPm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ec4cb354623a0096711f4c8b72290f62_JaffaCakes118

Files

ec4cb354623a0096711f4c8b72290f62_JaffaCakes118
.exe windows:5 windows x86 arch:x86

bb2e558da65f7b75cafcdc210e698da2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpA
GlobalFindAtomA
RemoveDirectoryA
QueryPerformanceCounter
RemoveDirectoryW
lstrcmpiA
FindClose
DeleteFileA
lstrlenA
GetCommandLineA
lstrlenW
GetModuleHandleA
CopyFileA
GetWindowsDirectoryA
VirtualAlloc
VirtualFree
lstrcmpiW
GetSystemTime

user32

GetDC
GetSystemMetrics
CharNextA
TranslateMessage
GetDesktopWindow
GetParent

gdi32

SelectObject
LineTo
SetTextColor
GetDeviceCaps
CreateSolidBrush
GetPixel
GetObjectA
DeleteObject
CreateCompatibleDC
SaveDC
SetTextAlign
RectVisible
SetStretchBltMode
RestoreDC
CreatePalette
GetTextMetricsA
GetStockObject
GetClipBox
DeleteDC

glu32

gluNurbsCallback

Sections

.text
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ