2d8184d97a429185bbc8cd6b029b6ca9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2d8184d97a429185bbc8cd6b029b6ca9_JaffaCakes118
Size

105KB
MD5

2d8184d97a429185bbc8cd6b029b6ca9
SHA1

c1c9e1a6d1cd915bdcf113df564b0790c702a7ae
SHA256

db25aaeb68cb44e70843300c2ed792f4f239d4d2bcc077d3a0433f6a5a3fe8a6
SHA512

4922a94b33713b5fceaadb2fc57d25926ff2430a0bef72648ddc8c4e3b6f7dda2e5055953e6ad019af9affd9b93772f7db9161524ef06a0f17b586517e35699a
SSDEEP

1536:YDze6Ndtt+Hh9yaDdNYPj2HXs2jxZE71T2dtdHy3g6Exh6Ul7UCi:YDhNdttQjXYP1z1TgjqUl7UZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2d8184d97a429185bbc8cd6b029b6ca9_JaffaCakes118

Files

2d8184d97a429185bbc8cd6b029b6ca9_JaffaCakes118
.exe windows:5 windows x86 arch:x86

f3e6ce05c66b40ae6aabcdb64fcc6876

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetParent
TranslateMessage
CharNextA
GetDesktopWindow
GetDC
GetSystemMetrics

gdi32

RectVisible
SetStretchBltMode
SelectObject
GetDeviceCaps
LineTo
GetTextMetricsA
CreateSolidBrush
CreateFontIndirectA
SetMapMode
RestoreDC
DeleteObject
CreatePalette
GetStockObject
SaveDC
CreateCompatibleDC
GetPixel
SelectPalette
SetTextAlign
SetTextColor
DeleteDC
GetObjectA
GetClipBox

kernel32

GetCommandLineA
RemoveDirectoryW
FindClose
lstrlenA
QueryPerformanceCounter
lstrlenW
GetModuleHandleA
lstrcmpA
CopyFileA
lstrcmpiA
GlobalFindAtomA
GetSystemTime
DeleteFileA
GetWindowsDirectoryA
RemoveDirectoryA
lstrcmpiW
VirtualAlloc
VirtualFree

glu32

gluNurbsCallback

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ