1a1da76036cc258fde2329d78fa5e537_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1a1da76036cc258fde2329d78fa5e537_JaffaCakes118
Size

111KB
MD5

1a1da76036cc258fde2329d78fa5e537
SHA1

c20e8c05731e1ee27338ab6e2571c1ef6ee188de
SHA256

18da18aca21bae55a04937b87b016aa03cc8f1000b65379fab75dba3b9ed9ad2
SHA512

9c129696c559b31cbe5eea4757c6f47afd5c4de7fd0bf0d6aeb2312e6382864f0a7f602a6453cbf6bbe3ae90386a9ab1c9a07596780c7565c9be4097a36f977e
SSDEEP

3072:dG3ETYr7kssfAgaeJiQM3husIkVzdXV0eC:dGUk0VEeJijhPIkb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1a1da76036cc258fde2329d78fa5e537_JaffaCakes118

Files

1a1da76036cc258fde2329d78fa5e537_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a114e38281e922b118dad65cd06d64d0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetMapMode
LineTo
GetTextMetricsA
GetPixel
GetStockObject
SetStretchBltMode
GetClipBox
CreateCompatibleDC
SelectPalette
RectVisible
SetTextColor
GetDeviceCaps
CreatePalette
DeleteObject
SaveDC
RestoreDC
GetObjectA
SelectObject
DeleteDC

user32

TranslateMessage
GetSystemMetrics
GetParent
CharNextA
GetDesktopWindow
GetDC

kernel32

lstrlenA
lstrcmpiA
GlobalFindAtomA
lstrcmpA
lstrlenW
GetSystemTime
RemoveDirectoryW
GetCommandLineA
FindClose
RemoveDirectoryA
GetModuleHandleA
CopyFileA
DeleteFileA
lstrcmpiW
QueryPerformanceCounter
GetWindowsDirectoryA
VirtualAlloc
VirtualFree

glu32

gluNurbsCallback

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ