d03ea167e233da4704f744efb1e56c30_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d03ea167e233da4704f744efb1e56c30_JaffaCakes118
Size

108KB
MD5

d03ea167e233da4704f744efb1e56c30
SHA1

99c4e1f5898f164fd179173c79eab8cb603f20d6
SHA256

97a38722e4362d9f2a6b93ad97ac61252c6d70b8f831bdec15be2777169fe7a9
SHA512

a2a6626199e70e7b9c372565a35051c360463f37bfd94a9ac6f763a8bd91f58656ae701605db801e2a2599bef99f08f6bbd7476d5ff64bae650d61759ba3c3d6
SSDEEP

1536:ZGAXBj3kQzcSF2/8VIqz3pgauF/s01WuhOMtVOWXfgY1TGB08UnZimC75oJo8fdG:ZXXh4aS8GOpT6nMuZ3gYNx8U5fdZse

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d03ea167e233da4704f744efb1e56c30_JaffaCakes118

Files

d03ea167e233da4704f744efb1e56c30_JaffaCakes118
.exe windows:4 windows x86 arch:x86

191c9bc2af63c670be95d88e54bbc711

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetStretchBltMode
GetStockObject
CreateSolidBrush
GetDeviceCaps
CreateFontIndirectA
SelectPalette
DeleteDC
SetTextColor
GetObjectA
GetTextMetricsA
LineTo
SaveDC
GetClipBox
GetPixel
CreateCompatibleDC
SetTextAlign
DeleteObject
RestoreDC
SelectObject
RectVisible

user32

GetDC
TranslateMessage
CharNextA
GetSystemMetrics
GetParent
GetDesktopWindow

kernel32

DeleteFileA
RemoveDirectoryW
FindClose
GetModuleHandleA
GlobalFindAtomA
RemoveDirectoryA
lstrcmpA
CopyFileA
GetCommandLineA
GetWindowsDirectoryA
lstrcmpiW
QueryPerformanceCounter
lstrlenW
lstrcmpiA
lstrlenA
VirtualAlloc
VirtualFree

glu32

gluNurbsCallback

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ