1375a3781ba0c82c9ae4d8d3bababcb0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1375a3781ba0c82c9ae4d8d3bababcb0_JaffaCakes118
Size

692KB
MD5

1375a3781ba0c82c9ae4d8d3bababcb0
SHA1

367b7ac4daf5035f7a59724bab5ba9afd018ffdb
SHA256

ed17418f636e2d9d2139453921fcd7fd87bc642f2fd9e489cf2006b7010c41e5
SHA512

528417bffcb51d0eda1fcafa1e6e8a37d598c88388c5b1ecaa49c6590f858981842025fea861dc90dc81184d8a72c2c7a35784a37e246b5f4d63bdb3d760e30a
SSDEEP

12288:WqWdLhBuk09ISMyIK6wwKHHRRIpTsZGeKK5NxN/R9iVbrhr:W7hkB9QjwwKnRRIQGRK5NvInhr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1375a3781ba0c82c9ae4d8d3bababcb0_JaffaCakes118

Files

1375a3781ba0c82c9ae4d8d3bababcb0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

aa1463e54c01ab15bbadfe8ac66e9801

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
GetVersion
GetModuleHandleA
GetTickCount
GetFileSize
Sleep
FreeLibrary
GetVersionExA
LocalAlloc
CloseHandle
lstrcatA

gdi32

CreateFontIndirectA
GetBkColor
GetPixel
GetStockObject
CreateSolidBrush
CreateCompatibleDC
GetTextExtentPoint32A
LineTo
SelectObject
GetObjectA
DeleteObject
GetTextColor
GetDeviceCaps
SetPixel
SetBkMode
GetTextMetricsA
BitBlt
MoveToEx
PatBlt

user32

EndDialog
LoadIconA
GetSysColor
DispatchMessageA
DestroyWindow
DefWindowProcA

msvcrt

__p__fmode
_controlfp
wcslen
_initterm
__setusermatherr

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 686KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ