394ec715c0bbc149221fd1d17583830e_JaffaCakes118 | Triage

Sharing

General

Target

394ec715c0bbc149221fd1d17583830e_JaffaCakes118
Size

117KB
MD5

394ec715c0bbc149221fd1d17583830e
SHA1

704f8de0ef953ad4c0723091d2029b9baacb21e5
SHA256

4984528ad2e1236ee48bb0d1c304f3aecbb5df7fbae0856a193167dab9d907a0
SHA512

b864ccc838df5de21a9f38c571351b4460b220462e1ab81118c0d0582cfb6a4206d2cdde1af2b66246c310ede1e49b570f13f0e162d47e7e8dbc6a8c4cc2712a
SSDEEP

1536:B7kDiTfftZVmhf7t5DW5LU8EKV0mVwLJpAK5SYv9iUu8Vf3i66o/+1qPvr:B7qqffVmVB5DW5L1OQw7v9du8Vm1qPj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
394ec715c0bbc149221fd1d17583830e_JaffaCakes118

Files

394ec715c0bbc149221fd1d17583830e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

6b81353b37f6718f8633635770c808aa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SaveDC
SelectObject
GetDeviceCaps
GetStockObject
SetStretchBltMode
GetClipBox
GetObjectA
RestoreDC
DeleteDC
SetTextColor
CreateFontIndirectA
DeleteObject
CreateCompatibleDC
LineTo
SelectPalette
GetTextMetricsA
SetMapMode
GetPixel
RectVisible
SetTextAlign

kernel32

CopyFileA
RemoveDirectoryA
lstrcmpiA
lstrlenA
GetCommandLineA
lstrcmpA
GetWindowsDirectoryA
lstrcmpiW
GlobalFindAtomA
lstrlenW
RemoveDirectoryW
DeleteFileA
FindClose
GetSystemTime
QueryPerformanceCounter
VirtualAlloc
VirtualFree

user32

GetDesktopWindow
GetParent
TranslateMessage
CharNextA
GetSystemMetrics
GetDC

glu32

gluNurbsCallback

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ