19900c05e7f1f722cc2c41386877c556_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

19900c05e7f1f722cc2c41386877c556_JaffaCakes118
Size

150KB
MD5

19900c05e7f1f722cc2c41386877c556
SHA1

59757613eb6cde38626c9e95e89138370adb42d0
SHA256

1c03294bebca38a3a1a626a5e4b8930057a1c609e41f240cd1fd9a4be1602f08
SHA512

b7c593097a3f0e65bb029fdda13fa2f6e9f9d82c74257b18eaffc2f7db46a29cab07cbf65910836bf1f6a5c409519a83368668057724cb9779fc7fdf5f5da46b
SSDEEP

3072:LfZ4YVoXIkdQ0U2cZKjTrwXgPMVpNuCps:LLM5M2cZKjxSu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
19900c05e7f1f722cc2c41386877c556_JaffaCakes118

Files

19900c05e7f1f722cc2c41386877c556_JaffaCakes118
.exe windows:5 windows x86 arch:x86

2abd94b473cbe59cc5afac590b1f8593

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreateCompatibleDC
GetTextMetricsA
CreateSolidBrush
Rectangle
SetBkMode
GetDeviceCaps
CreatePalette
SetTextAlign
GetPixel
SetMapMode

user32

ShowWindow
CharNextA
GetDesktopWindow

kernel32

lstrcmpA
SetLastError
VirtualAlloc
QueryPerformanceCounter
lstrlenW
lstrcmpiA
GetCurrentThread
VirtualFree
GetModuleHandleW
GetLastError
MulDiv
CopyFileA
GetWindowsDirectoryA

glu32

gluTessCallback

comctl32

InitCommonControls

Sections

.text
Size: 1024B - Virtual size: 860B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Cmpjd Cf
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ