dd6f3ce5f71206cec593d6a8c458b970_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dd6f3ce5f71206cec593d6a8c458b970_JaffaCakes118
Size

259KB
MD5

dd6f3ce5f71206cec593d6a8c458b970
SHA1

4ee233521364be05eb25688bbe1f739c5d784b81
SHA256

8d1a60768848494fdea6be34cd69f9813400f12eb8d3352d52937bd1eed90088
SHA512

98585b982e555443c9272c8ea79cee66ce8b12232712ac5e90205c99643bb79b27cd18b89f2e92e56a9401199c7fb9de9374a13782516f4f9f1e0751b4782398
SSDEEP

3072:jpjtNWTnVNa9KRdVLCW7+uOcomgYi/PECj5OSc/ll2Au8V3KNdo86C/TJxH:jpjtcK9KBN+uFvu/8C5Ofp2h6Cb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dd6f3ce5f71206cec593d6a8c458b970_JaffaCakes118

Files

dd6f3ce5f71206cec593d6a8c458b970_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bf0175fa219231632a6cd3b252753dda

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetBkMode
BeginPath
SelectPalette
SetBkColor
RestoreDC
MoveToEx
SetTextColor
SetMapMode
GetDCOrgEx
GetPixel
SetBrushOrgEx
EndDoc
GetPaletteEntries
GetDeviceCaps
EndPath
UnrealizeObject
SetWindowExtEx

user32

GetDesktopWindow
GetMessagePos
GetInputState
CharNextA

kernel32

GetThreadLocale
GetUserDefaultLangID
DeleteFileW
GetDriveTypeA
GlobalFindAtomW
DeleteFileA
lstrcmpA
lstrlenA
GetModuleHandleW
GetCurrentThreadId
MulDiv
lstrcmpiA
GetVersion
GetCurrentProcess
GetCommandLineW
GetCommandLineA
VirtualAlloc
GetACP

comctl32

InitCommonControls

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 175KB - Virtual size: 174KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 79KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ