5b55a8f255468c2c67b7bc65722a0568_JaffaCakes118 | Triage

Sharing

General

Target

5b55a8f255468c2c67b7bc65722a0568_JaffaCakes118
Size

109KB
MD5

5b55a8f255468c2c67b7bc65722a0568
SHA1

33827686b227b2bd113687e7e0aeb6da269d7406
SHA256

efd50b5fb142dd0bd1670e5c2b2edb5326574ff64bd1beeb7cd9ae4113607dbc
SHA512

327224389d01e3b212fe340ef1842dce0143c0cc57ee32c29c85e840f7d33f102ccaef4ba4d222343a6c9414927c539bf638eeeb019fbdc526c385a762ddb9d3
SSDEEP

1536:EQKfwRUUezobXQtsAdOTdPMplt3Hf3R+Sm3x6U09y7fFtpfl:EQoq8sAw0T1Hf3z5y7fFtx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5b55a8f255468c2c67b7bc65722a0568_JaffaCakes118

Files

5b55a8f255468c2c67b7bc65722a0568_JaffaCakes118
.exe windows:5 windows x86 arch:x86

6b98afa3c9fbc6f80653f2ab826dc51e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharNextA
GetDC
TranslateMessage
GetParent
GetDesktopWindow
GetSystemMetrics

gdi32

RestoreDC
DeleteDC
SetTextAlign
LineTo
GetObjectA
GetTextMetricsA
SaveDC
DeleteObject
GetClipBox
CreateCompatibleDC
GetPixel
RectVisible
SelectPalette
CreateFontIndirectA
GetDeviceCaps
CreateSolidBrush
SetMapMode
SetTextColor
SelectObject
SetStretchBltMode

kernel32

GetModuleHandleA
RemoveDirectoryA
lstrcmpiA
lstrcmpiW
DeleteFileA
CopyFileA
GlobalFindAtomA
lstrlenW
RemoveDirectoryW
FindClose
lstrlenA
lstrcmpA
GetWindowsDirectoryA
GetSystemTime
QueryPerformanceCounter
GetCommandLineA
VirtualAlloc
VirtualFree

glu32

gluNurbsCallback

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 30KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

nkrthsp
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE