38dd25a0aa2812a20235ede21eaf7a47_JaffaCakes118 | Triage

Sharing

General

Target

38dd25a0aa2812a20235ede21eaf7a47_JaffaCakes118
Size

105KB
MD5

38dd25a0aa2812a20235ede21eaf7a47
SHA1

dbb7c063b3df5cca04ce82ecec1d86e0935ef462
SHA256

e7e63be0ab8a48b7a751366009a8fa470e5caaad327638c28d2e24fbad420340
SHA512

63a87994afc6bdba4040f0d54b47750f0a8301e363eccf3459478b190a2f39fc5a0e90841d2bc3d21dc0a0bbe0cabb59d0bb7dd44c0c8178d5e33794d9a30a45
SSDEEP

3072:knLRgp9AtKTojz+Kg+hFGOvZPUaKhbesrN:k0AgsX+Kg+hI0xVKH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
38dd25a0aa2812a20235ede21eaf7a47_JaffaCakes118

Files

38dd25a0aa2812a20235ede21eaf7a47_JaffaCakes118
.exe windows:5 windows x86 arch:x86

23a0528ab6510eb080f9da6f374a464f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetSystemMetrics
GetParent
CharNextA
TranslateMessage
GetDC
GetDesktopWindow

gdi32

GetClipBox
DeleteDC
SelectObject
CreateCompatibleDC
SetMapMode
RectVisible
SetStretchBltMode
SetTextColor
GetDeviceCaps
GetTextMetricsA
GetStockObject
SaveDC
CreatePalette
GetObjectA
CreateFontIndirectA
CreateSolidBrush
GetPixel
RestoreDC
LineTo
SetTextAlign
DeleteObject
SelectPalette

kernel32

lstrcmpiA
GetCommandLineA
GlobalFindAtomA
lstrcmpA
CopyFileA
VirtualAlloc
GetWindowsDirectoryA
lstrcmpiW
lstrlenA
GetModuleHandleA
lstrlenW
GetSystemTime
VirtualFree
QueryPerformanceCounter
RemoveDirectoryA
RemoveDirectoryW
FindClose
DeleteFileA

glu32

gluNurbsCallback

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ