bad90aa99c82f517c11adb77f33481e6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bad90aa99c82f517c11adb77f33481e6_JaffaCakes118
Size

524KB
MD5

bad90aa99c82f517c11adb77f33481e6
SHA1

08c4a5dbe0315b2118c9f68977865974f1f4e050
SHA256

fefc5d77b6f3f3f8dd6c5661c7ecbdba04d3e50c65165f315932f6522dd70ac0
SHA512

b9851526ec5e5eb07b99ba5ca9b5deedd60ea2cd30cc1c3170847c6081689e68c3d46d01a33830dc27884572965a58aa6b4bb59b45a7233f4bae23f3602ea926
SSDEEP

6144:+OQI2eD4ELd13Y3Zx5/A4Xg0cwRp0wEnFjlLo8nXYKo+Op02fjuT+u/TPY/:bD4Kd1Y3b5YzNO0ZnhVPXvOy0SPY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bad90aa99c82f517c11adb77f33481e6_JaffaCakes118

Files

bad90aa99c82f517c11adb77f33481e6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

75e4cb765ce94b5e56b831f05d079f72

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadResource
GetCommandLineA
FindResourceA
ExitProcess
GetModuleHandleA
GetProcessHeap
HeapAlloc

user32

RegisterClassA
CreateWindowExA
GetDC
DefWindowProcA

gdi32

ChoosePixelFormat
SetPixelFormat

opengl32

wglGetCurrentDC
wglGetCurrentContext
wglShareLists
wglCreateContext
glGetLightiv
glLightiv
wglMakeCurrent

Sections

.text
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 516KB - Virtual size: 514KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ