37e8a8fb254e643b897171cbb3fb5f8a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

37e8a8fb254e643b897171cbb3fb5f8a_JaffaCakes118
Size

260KB
MD5

37e8a8fb254e643b897171cbb3fb5f8a
SHA1

7d1510f2524dde0e9d75d33f2506be6c27a5f1ca
SHA256

424a45338de92895856e524b747ac126eb2eae9f15f5fad2f605f24e915202d8
SHA512

b909ad1e54ec73a445fe9f17703ba5a55c740f1f0970eb4c94b4202078f71f058df7b6a8c36e80b16f5c0c355d9b6ca381542ee387371ab40febcb9bf0ed84a4
SSDEEP

6144:5LVNsUfAbapNbmx0NPWOJ3IGivtsqKKZ4Bu:9IjbaPCx097OtsqKKZEu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
37e8a8fb254e643b897171cbb3fb5f8a_JaffaCakes118

Files

37e8a8fb254e643b897171cbb3fb5f8a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

949d3f0a9a042c5aa2116bfa085a5aed

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControls

user32

GetDesktopWindow
CharNextA
GetInputState
GetMessagePos

gdi32

LineTo
GetDeviceCaps
BeginPath
GetPaletteEntries
ExcludeClipRect
GetTextMetricsA
SetMapMode
SetColorSpace
SetBrushOrgEx
SelectPalette
UnrealizeObject
RestoreDC
GetDIBColorTable
SetWindowExtEx

kernel32

GetVersion
GlobalFindAtomA
GetConsoleOutputCP
lstrlenW
VirtualAlloc
lstrcmpA
GetTickCount
GlobalFindAtomW
lstrlenA
GetCommandLineW
SetCurrentDirectoryA
GetACP
SetLastError
GetProcessHeap
DeleteFileA
GetUserDefaultLangID
DeleteFileW
GetCurrentThread
RemoveDirectoryA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 175KB - Virtual size: 175KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 79KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ