b12018af0ebb783cedad851b52757bef_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b12018af0ebb783cedad851b52757bef_JaffaCakes118
Size

109KB
MD5

b12018af0ebb783cedad851b52757bef
SHA1

8b9a3de7a6fd6e6127eb73815a9274de351b3e9c
SHA256

931b276b6f1df40a6c05e25058cbfb26f0f82af03912f7774fd8d8488d4de5f0
SHA512

634fadeecf75e9f38865591e222b95e19f1ced6c9f372844f86c9f9475f6946b5834b5088000d37a55923d19f24649b41cf5859b754cecbdaad2bb99eeebd1f5
SSDEEP

1536:E3dXhEbyRZmpIm2KaL+/h9RQrHb0tf1DHZyBJ3y6CJAz7kjSha:udREbynmpmKaL+/Rg70x1D0BF7kjSha

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b12018af0ebb783cedad851b52757bef_JaffaCakes118

Files

b12018af0ebb783cedad851b52757bef_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6f2831d694b4ecb370efabbb7f869d9f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetStretchBltMode
CreateSolidBrush
DeleteObject
SetTextColor
CreatePalette
GetPixel
SelectPalette
RestoreDC
SetTextAlign
SelectObject
SetMapMode
RectVisible
CreateFontIndirectA
GetObjectA
SaveDC
GetTextMetricsA
CreateCompatibleDC
DeleteDC
GetStockObject

user32

GetParent
CharNextA
GetSystemMetrics
GetDC
TranslateMessage
GetDesktopWindow

kernel32

lstrlenW
lstrcmpA
RemoveDirectoryA
QueryPerformanceCounter
DeleteFileA
lstrcmpiW
GetSystemTime
GetCommandLineA
VirtualAlloc
CopyFileA
lstrlenA
VirtualFree
GetWindowsDirectoryA
lstrcmpiA
RemoveDirectoryW
FindClose
GetModuleHandleA
GlobalFindAtomA

glu32

gluNurbsCallback

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ