288ddc870e2a3ec4785fda31311ba7be_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

288ddc870e2a3ec4785fda31311ba7be_JaffaCakes118
Size

110KB
MD5

288ddc870e2a3ec4785fda31311ba7be
SHA1

9bc8db3355660ef12cd86234e25baba5f0f6d1a8
SHA256

618e1e7fafadf26f6635497d1b69b36f8635b11a1c0dae960975d53a5dcaff78
SHA512

636a3a9590ac8e96453252c4fda2a5b745e4184922cb28645ee5d9fb0c1b7baf35d9bbabd834b4baaeb106f98f8dfb296630e6f63f9b7ea9b980d9ec1ecbe410
SSDEEP

3072:vnXifkKkzpC5dAqzZAdgQaiQshJvUFNboZrXX44yyB:fiM9pC5j3iQsL0NbSk5a

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
288ddc870e2a3ec4785fda31311ba7be_JaffaCakes118

Files

288ddc870e2a3ec4785fda31311ba7be_JaffaCakes118
.exe windows:5 windows x86 arch:x86

1b2fad6b9251520715006c04acf9a40d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharNextA
GetDC
GetDesktopWindow
GetSystemMetrics
TranslateMessage
GetParent

kernel32

lstrlenW
GetSystemTime
GetWindowsDirectoryA
lstrlenA
GetModuleHandleA
QueryPerformanceCounter
CopyFileA
GetCommandLineA
lstrcmpiA
lstrcmpiW
DeleteFileA
RemoveDirectoryA
RemoveDirectoryW
FindClose
lstrcmpA
VirtualAlloc
VirtualFree

gdi32

SetTextColor
CreateSolidBrush
CreateFontIndirectA
CreatePalette
DeleteDC
LineTo
RectVisible
SaveDC
GetStockObject
GetDeviceCaps
RestoreDC
CreateCompatibleDC
GetObjectA
SetTextAlign
SelectPalette
GetTextMetricsA
GetPixel
SetStretchBltMode
DeleteObject

glu32

gluNurbsCallback

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ