dd7a8e6b43dcc474ebea4123e9036253_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dd7a8e6b43dcc474ebea4123e9036253_JaffaCakes118
Size

151KB
MD5

dd7a8e6b43dcc474ebea4123e9036253
SHA1

a6b2f6931192a3fcd4f9cdd389dd499f01139a76
SHA256

a890a96a0db33ff942ba0449f52abe7e3d951715a504b63612707cf4a7bb6a66
SHA512

843326d8a10dfef1fd64f0fc216fd9fcd6169080fa4c65acb79dd6a691d920f39f7b49098316745d4e8ed86432b5fef71a26bda3cc6c113ad218b2af85a3fa9e
SSDEEP

1536:t5RpLxKBJqi40Y524m5cP54IZ+rcWZdl6dss1lNLmHJHsj7K1V4iLDXkgUYpM:DR6lWOkZRWjl6Os1lNO22eiLDXkgR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dd7a8e6b43dcc474ebea4123e9036253_JaffaCakes118

Files

dd7a8e6b43dcc474ebea4123e9036253_JaffaCakes118
.exe windows:5 windows x86 arch:x86

3feeb7da9024acfdd89eaea290481a01

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

LineTo
SetBkMode
GetStockObject
GetPixel
SelectPalette
PatBlt
RectVisible
RestoreDC

kernel32

VirtualAlloc
GetACP
lstrlenA
lstrcmpiW
VirtualFree
DeleteFileA
QueryPerformanceCounter
GetWindowsDirectoryA
GetThreadLocale

user32

ShowWindow
GetDesktopWindow
GetSystemMetrics

glu32

gluTessCallback

comctl32

InitCommonControls

Sections

.text
Size: 1024B - Virtual size: 952B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Bjyns. N
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ