d0225c8e9a499c115bf69b1082dab7f7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d0225c8e9a499c115bf69b1082dab7f7_JaffaCakes118
Size

111KB
MD5

d0225c8e9a499c115bf69b1082dab7f7
SHA1

295c8600c716d1a5c0cad27f9de94105f0062711
SHA256

96186e4e6047d5882ac29c326a460fb3d6756953f3d3c52f110791750d6c6519
SHA512

6626135679eab13414e1abc560473c7b4fde8c7b872c4f847892cd8fde94cf205398735d2644f24c9c29203eaa1698739ac293d14110e40baa5d898a48742a13
SSDEEP

1536:SnJWwg+3Y8RQq3qNfdaa3Y2ql4/9GW7XkhChVpK1EpmPEU6IYVOidWKFTkE2QgWK:qYxpOQq3qt3Y2SmDKGosU6IHWPu+s

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d0225c8e9a499c115bf69b1082dab7f7_JaffaCakes118

Files

d0225c8e9a499c115bf69b1082dab7f7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1fd6650a20f99600412ebe2feee30173

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDC
GetSystemMetrics
GetParent
TranslateMessage
GetDesktopWindow
CharNextA

gdi32

RestoreDC
SetMapMode
SelectObject
SaveDC
LineTo
GetTextMetricsA
DeleteObject
CreateFontIndirectA
SetStretchBltMode
CreateSolidBrush
GetObjectA
GetStockObject
DeleteDC
GetClipBox
GetPixel
CreateCompatibleDC
CreatePalette
GetDeviceCaps
RectVisible
SetTextAlign
SelectPalette
SetTextColor

kernel32

CopyFileA
lstrcmpA
lstrcmpiW
GetCommandLineA
GetSystemTime
DeleteFileA
lstrlenA
RemoveDirectoryA
RemoveDirectoryW
FindClose
GetWindowsDirectoryA
GetModuleHandleA
lstrlenW
GlobalFindAtomA
lstrcmpiA
VirtualAlloc
VirtualFree

glu32

gluNurbsCallback

Sections

.text
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ