148e7732a18d3411497b04c7cb8ca785_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

148e7732a18d3411497b04c7cb8ca785_JaffaCakes118
Size

104KB
MD5

148e7732a18d3411497b04c7cb8ca785
SHA1

abfba55c52cd0b15d31b7716fa7be64ac5b32a8b
SHA256

b295fb41fffec6421b3dad461a672d24ef72538dc6a267f8b747e3aedd13fcd0
SHA512

354997e222e0af30ae2a3cc23c6780a77ee92de473bf194d5df895460db7f82311bf289f764d2c83764b26c8f674bbb757f34e8765aef57de08dab5a436043eb
SSDEEP

1536:wgLnM2QbDbhECjjIzpxK3zYyj1YXbxtWIHsdrle/YzOCfifE+nQJZWg:bQDCCjszpc3Myj1yXHsdr4jlnQJZW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
148e7732a18d3411497b04c7cb8ca785_JaffaCakes118

Files

148e7732a18d3411497b04c7cb8ca785_JaffaCakes118
.exe windows:4 windows x86 arch:x86

cd237ac958623ba5feaa655f03af33e0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetStockObject
CreatePalette
SetTextColor
DeleteObject
SetMapMode
RestoreDC
DeleteDC
GetDeviceCaps
GetObjectA
SelectPalette
SaveDC
GetPixel
CreateSolidBrush
CreateFontIndirectA
GetTextMetricsA
SetStretchBltMode
LineTo
SetTextAlign
SelectObject

kernel32

GetModuleHandleA
DeleteFileA
GetWindowsDirectoryA
GetSystemTime
lstrlenA
GlobalFindAtomA
lstrlenW
lstrcmpiW
RemoveDirectoryW
FindClose
lstrcmpA
GetCommandLineA
QueryPerformanceCounter
RemoveDirectoryA
lstrcmpiA
CopyFileA
VirtualAlloc
VirtualFree

user32

GetDesktopWindow
TranslateMessage
GetParent
GetDC
CharNextA
GetSystemMetrics

glu32

gluNurbsCallback

Sections

.text
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ