102fd0420031150b2a7de79cb1da174a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

102fd0420031150b2a7de79cb1da174a_JaffaCakes118
Size

110KB
MD5

102fd0420031150b2a7de79cb1da174a
SHA1

7aadf64efb88471a08796e21045be624e1c12af2
SHA256

6191690aa70c302c4fa55d6ff1d72f04079ef97823ed9236638565aaaf95db16
SHA512

d136eaab875c4dc3e3960f19e7e4668c0f253b830e3035433b1d67de8daca62f1d09262946dff40359dd9efede341a174100fc07f145685609715a0395b0b6fc
SSDEEP

1536:4XOTakjF4Iuvk7PwfcrjAfpUEYlnTszr8TubbUmThARPE332w41Rgz:4eTY9Er8fW5lI8TEuw41M

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
102fd0420031150b2a7de79cb1da174a_JaffaCakes118

Files

102fd0420031150b2a7de79cb1da174a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

041d91150b81c1c5fea2232531e3593c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDesktopWindow
GetParent
GetSystemMetrics
GetDC
TranslateMessage
CharNextA

gdi32

GetObjectA
CreateCompatibleDC
GetPixel
CreatePalette
SaveDC
CreateFontIndirectA
SelectObject
SelectPalette
GetStockObject
GetTextMetricsA
DeleteObject
SetStretchBltMode
SetTextAlign
CreateSolidBrush
SetMapMode
DeleteDC
RectVisible
SetTextColor
GetClipBox
LineTo
RestoreDC

kernel32

RemoveDirectoryW
GetModuleHandleA
FindClose
QueryPerformanceCounter
DeleteFileA
GlobalFindAtomA
lstrcmpiA
RemoveDirectoryA
lstrlenW
lstrcmpiW
CopyFileA
GetCommandLineA
GetWindowsDirectoryA
GetSystemTime
VirtualAlloc
VirtualFree
lstrcmpA
lstrlenA

glu32

gluNurbsCallback

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ