3287f2c938ef69ac9279985210a4ba4f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3287f2c938ef69ac9279985210a4ba4f_JaffaCakes118
Size

112KB
MD5

3287f2c938ef69ac9279985210a4ba4f
SHA1

028a49ec217fa58c9ef398fda3e87c2bb13fba91
SHA256

441d7656ad1fcb772a16b42b6bbcaf7e34f83d8a34e80fc3eb1b8a3a60534640
SHA512

03fa8216d8f71823d77e7eef0c0980a66a9b30f3f6d54e3a4cd7bcf58142db37e2b684a5c035d106ce7c0adc8126ec5d720e6068ae5564b07bfdc4ee6feb3ade
SSDEEP

3072:SHFQ2YYo2lEg+jTMjHDPW3Te0zhdtvScx:yF5Po2kjCujHzZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3287f2c938ef69ac9279985210a4ba4f_JaffaCakes118

Files

3287f2c938ef69ac9279985210a4ba4f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

7d48b5148263f8f638a6a81c2542901f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetTextMetricsA
CreateCompatibleDC
CreatePalette
GetObjectA
SelectPalette
GetDeviceCaps
DeleteObject
LineTo
GetClipBox
SetMapMode
RestoreDC
GetPixel
RectVisible
SetTextAlign
SetTextColor
SaveDC
SetStretchBltMode
SelectObject

user32

GetDC
GetDesktopWindow
TranslateMessage
GetParent
CharNextA
GetSystemMetrics

kernel32

lstrlenW
VirtualAlloc
lstrcmpA
DeleteFileA
GetModuleHandleA
CopyFileA
lstrcmpiW
VirtualFree
lstrcmpiA
RemoveDirectoryW
lstrlenA
FindClose
GetCommandLineA
GlobalFindAtomA
RemoveDirectoryA
QueryPerformanceCounter
GetWindowsDirectoryA

glu32

gluNurbsCallback

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ