2510ee6c935587a289e4fb6919e55765_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2510ee6c935587a289e4fb6919e55765_JaffaCakes118
Size

117KB
MD5

2510ee6c935587a289e4fb6919e55765
SHA1

2d2844ba8945e3d8640bac91225533b5c6dd42e8
SHA256

db689a6bd4293230e455731bad1bd2ae6b924415b350e30d062ada5973a7445c
SHA512

c798cd8f2e4833e0ca34b78a3e8e3ec2d265d0f1d88947f92f7b4d8daa9046e029e0999e085fb9de2972272be4a8a568488b5477cdc6a95831e5bb14bb8a945c
SSDEEP

3072:pMXaZmo7QnrTnM/Zil445whct4N6IOZWAptgENz:CaZ8nrYB14WdZ0WAz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2510ee6c935587a289e4fb6919e55765_JaffaCakes118

Files

2510ee6c935587a289e4fb6919e55765_JaffaCakes118
.exe windows:5 windows x86 arch:x86

5af882a82aa3e2168fe60eef6da43c3d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetTextMetricsA
SetStretchBltMode
CreateFontIndirectA
CreateSolidBrush
RestoreDC
GetStockObject
CreatePalette
CreateCompatibleDC
SetMapMode
SaveDC
GetDeviceCaps
GetObjectA
SelectObject
GetPixel
SelectPalette
DeleteDC
RectVisible
LineTo
SetTextColor
DeleteObject
SetTextAlign
GetClipBox

user32

GetSystemMetrics
GetDC
TranslateMessage
GetDesktopWindow
GetParent
CharNextA

kernel32

lstrlenA
RemoveDirectoryA
DeleteFileA
lstrcmpiW
GetCommandLineA
GetModuleHandleA
GetWindowsDirectoryA
QueryPerformanceCounter
VirtualAlloc
lstrcmpiA
CopyFileA
lstrlenW
GetSystemTime
VirtualFree
GlobalFindAtomA
lstrcmpA
RemoveDirectoryW
FindClose

glu32

gluNurbsCallback

Sections

.text
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 58KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ