5ce26c2fcc6700354b1db79fe9197de8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5ce26c2fcc6700354b1db79fe9197de8_JaffaCakes118
Size

116KB
MD5

5ce26c2fcc6700354b1db79fe9197de8
SHA1

c4cb9d7064f2da728f36aa156b1a8b75242ea071
SHA256

0f3f00718a602040a208d37928b932543c9c57128a34adb8f7593d95e3e67c08
SHA512

fddea18bc549f5f61ba356e4c6c9e7d8094d2ff2f5879d1228b64ac2287eb8963fda9907d1b9473312cd3a3daec2e3213d8600e9e5f558d129fe5e5c73b507a9
SSDEEP

1536:Bsq5qtKHVQ1A81JpoQEQwFm98GBOTjyVKvbkVDvKEvOgnp2ZL7n6RiTXxxvE3i3l:oMsJBfVB7kv03Ggnp2ZvkcBddfB/L2v

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5ce26c2fcc6700354b1db79fe9197de8_JaffaCakes118

Files

5ce26c2fcc6700354b1db79fe9197de8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8de305adc6f2e9c70797409e30cb0e74

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetSystemMetrics
GetParent
GetDesktopWindow
TranslateMessage
CharNextA
GetDC

kernel32

lstrcmpA
QueryPerformanceCounter
GetWindowsDirectoryA
GetCommandLineA
CopyFileA
GetSystemTime
lstrcmpiW
GlobalFindAtomA
DeleteFileA
lstrlenW
RemoveDirectoryW
FindClose
lstrcmpiA
lstrlenA
GetModuleHandleA
VirtualAlloc
VirtualFree

gdi32

RectVisible
SelectPalette
GetDeviceCaps
GetStockObject
GetObjectA
RestoreDC
CreatePalette
DeleteObject
DeleteDC
GetPixel
SetMapMode
CreateCompatibleDC
CreateFontIndirectA
GetClipBox
SetTextColor
SetTextAlign
CreateSolidBrush
LineTo
SaveDC

glu32

gluNurbsCallback

Sections

.text
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ