dc0f8ea6355878a1ce3c16122e47819a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dc0f8ea6355878a1ce3c16122e47819a_JaffaCakes118
Size

77KB
MD5

dc0f8ea6355878a1ce3c16122e47819a
SHA1

66fb3e96d1d760b21bf41e026d7490d23db2a9e3
SHA256

18cf420247716bd3883bc30e1174c94e39da835a2a54f978c5187c9b44632f2d
SHA512

e54a6fdac6436e6103be4dd96750aab2dc915d1269d6ed979e8a6b8c925cbf9c48b400a3f41548123233c45fc96c931127e01a5f7fa8458bbf4d0ed2c3d9d52c
SSDEEP

1536:CMBxj6A4dtYKcncRCnj0dcLB/ln+/XmlMtQ:NgXoKccRCnWcLB/kXk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dc0f8ea6355878a1ce3c16122e47819a_JaffaCakes118

Files

dc0f8ea6355878a1ce3c16122e47819a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dd31bc02dcef6519daaa77acf3dcc536

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

opengl32

glCopyTexImage1D
glScaled
glGetDoublev
glGetFloatv
glRotatef
glAlphaFunc
glAccum
glGetIntegerv
glScalef
glDrawPixels
glGetError
glLoadIdentity
glBindTexture
glCopyTexImage2D
glCopyTexSubImage2D
glCopyPixels

ole32

CoUninitialize
CoInitialize
CreateOleAdviseHolder
CoTaskMemFree
CoTaskMemAlloc
CreateDataCache
CreateDataAdviseHolder

comctl32

ord6

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
_exit
_XcptFilter
exit

kernel32

DeleteFileA
GetDateFormatA
GetFileAttributesA
CopyFileA
GetStartupInfoA
CloseHandle
GetCommandLineA
VirtualAlloc
GetModuleHandleA
GetProcAddress
CreateFileA

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 299KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ