2fa95642750d460e70e55ebd05724115_JaffaCakes118 | Triage

Sharing

General

Target

2fa95642750d460e70e55ebd05724115_JaffaCakes118
Size

115KB
MD5

2fa95642750d460e70e55ebd05724115
SHA1

ccea704d4987165d51f2da3ee15a9def390f675c
SHA256

bf29259b6f973859e3bb8ef066baf4bb0b838ab39c367fddf7a3d6644784cc69
SHA512

87c9a925cd103f804da81fb7e81c1ce15472e6c5d00c297c8e72d3b93da64083bdd355225c0adca4f4c14955dec9fcc07752dcd3784e937dfc2156e69e2f8bc5
SSDEEP

1536:36uzvDyuox/aOYYe+xG30Ik7Q8/qst9Vx16QlDGXP/uAotgaTB3a6EHWaWCEhMt:Kcuxx/DYt+VIkXTBs/uAot9TiWCEha

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2fa95642750d460e70e55ebd05724115_JaffaCakes118

Files

2fa95642750d460e70e55ebd05724115_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bd7e20f1912d19c3fa2a27ce20daf3d3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDC
GetDesktopWindow
GetSystemMetrics
GetParent
CharNextA
TranslateMessage

gdi32

CreateFontIndirectA
SetStretchBltMode
GetDeviceCaps
GetStockObject
SaveDC
CreatePalette
RestoreDC
CreateCompatibleDC
SetTextColor
SetMapMode
DeleteDC
LineTo
GetPixel
DeleteObject
SetTextAlign
RectVisible
SelectObject
SelectPalette
GetClipBox
CreateSolidBrush
GetTextMetricsA
GetObjectA

kernel32

DeleteFileA
QueryPerformanceCounter
CopyFileA
RemoveDirectoryA
lstrlenW
lstrcmpiW
GetCommandLineA
GetWindowsDirectoryA
lstrcmpA
RemoveDirectoryW
FindClose
lstrlenA
GetSystemTime
lstrcmpiA
GetModuleHandleA
GlobalFindAtomA
VirtualAlloc
VirtualFree

glu32

gluNurbsCallback

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE