3c73ebe5b4ba2ba4c3dfeaac6624dde6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3c73ebe5b4ba2ba4c3dfeaac6624dde6_JaffaCakes118
Size

110KB
MD5

3c73ebe5b4ba2ba4c3dfeaac6624dde6
SHA1

a1404baa0544ae37982c78574d2fcb9b3e2ae1bb
SHA256

215e77b54340d4e184ea6e18573b62e21e92620b40e79ad6369baeba9ec81efe
SHA512

45fa552c7d422eb4398eef5bf4ea09c4e40474f6d8847e7e0b07bbff34463d51fb56e0d6aabb41900f2a2f269f0f148c49877ef62b302af2301a3622527cfbf7
SSDEEP

3072:khRsN9CsmU0RWXhsJvpyOw9EwSigwCUAh/H:QRJsmrdijG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3c73ebe5b4ba2ba4c3dfeaac6624dde6_JaffaCakes118

Files

3c73ebe5b4ba2ba4c3dfeaac6624dde6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c59111ded6defea1aff06798ab9f4fed

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetClipBox
SetTextAlign
RectVisible
SetTextColor
GetTextMetricsA
CreateSolidBrush
RestoreDC
DeleteObject
SelectPalette
GetObjectA
SelectObject
LineTo
DeleteDC
GetStockObject
GetDeviceCaps
SetMapMode
SetStretchBltMode
GetPixel
CreateCompatibleDC
CreatePalette
CreateFontIndirectA

kernel32

RemoveDirectoryA
DeleteFileA
GlobalFindAtomA
CopyFileA
GetModuleHandleA
RemoveDirectoryW
GetWindowsDirectoryA
FindClose
lstrcmpiA
GetSystemTime
lstrcmpiW
QueryPerformanceCounter
VirtualAlloc
VirtualFree
GetCommandLineA
lstrcmpA

user32

CharNextA
TranslateMessage
GetParent
GetDesktopWindow
GetDC
GetSystemMetrics

glu32

gluNurbsCallback

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ