215d86fb7ee33fd01790bf41c8ad1824_JaffaCakes118 | Triage

Sharing

General

Target

215d86fb7ee33fd01790bf41c8ad1824_JaffaCakes118
Size

53KB
MD5

215d86fb7ee33fd01790bf41c8ad1824
SHA1

96cbab46c9a6309ce37db167bd04dfd31c2eadf2
SHA256

c8d3ef9b1a54c0c4b74654279546126e334ef2dda312a71f2e7a5ddb4664f2bc
SHA512

5aa7c8bce92ade7ab3ef743d07c5ebf06efed4f1e74cabb352e9717f6a0e951b8da422180196f95064d2d5fc0017044d221703402d9004648f39398fe3bc8aaf
SSDEEP

1536:Ea6VC/jdelKE90KmIJQ3FKrKOYHhph3Z0ojWPTKGloGjHlJ7gB968Z7/CZTHcllE:E1C/jdelKE90KmIJQ3FKrKOYHhph3Z0l

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/so_bmp_v0/bmp.exe

Files

215d86fb7ee33fd01790bf41c8ad1824_JaffaCakes118
.zip
so_bmp_v0/bitmap.txt
so_bmp_v0/bmp.cpp
so_bmp_v0/bmp.exe
.exe windows:4 windows x86 arch:x86

948496e6b004a0fc104d046e91b47b1b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SelectObject
CreateCompatibleDC
CreateDIBitmap
StretchBlt

user32

EndPaint
CreateWindowExA
GetDC
ShowWindow
SetFocus
GetMessageA
DispatchMessageA
BeginPaint

msvcrt

__getmainargs
_controlfp
_except_handler3
__set_app_type
fclose
fread
fopen
__p__fmode
_XcptFilter
exit
__p___initenv
_exit
_initterm
__setusermatherr
_adjust_fdiv
__p__commode

kernel32

GetModuleHandleA

Sections

.text
Size: 1024B - Virtual size: 748B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
so_bmp_v0/winnt.bmp