299754b546d4efc3cd655ec84db9b3b4_JaffaCakes118 | Triage

Sharing

General

Target

299754b546d4efc3cd655ec84db9b3b4_JaffaCakes118
Size

261KB
MD5

299754b546d4efc3cd655ec84db9b3b4
SHA1

1ec4458b3c393619fceafd80943f87d561a4c46a
SHA256

01ddb4358b573ec3ea48a79e9f6df72e5a437560d9a10a57391acd34c27018eb
SHA512

aaaff63d45b630da19978304a0736dd88e3fd5710d914b2284b8ee2435ada3ba64ca1c080be7ef003f4b83432e87d8f4902b81ecf4d5c47497e5ab10e60479f1
SSDEEP

3072:xwMF7f9anDFi7XPSN+rMmY5ho4w76QwmEqdjnSnKJD6SaWHDt:qoz2IP++ruE7vnSKJv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
299754b546d4efc3cd655ec84db9b3b4_JaffaCakes118

Files

299754b546d4efc3cd655ec84db9b3b4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3a22e537e857ec5c71cbb23e1aabc72e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControls

gdi32

GetPaletteEntries
SelectPalette
SetBkColor
MoveToEx
GetStockObject
SetBrushOrgEx
SetWindowExtEx
GetDCOrgEx
GetDIBColorTable
ExcludeClipRect
OffsetViewportOrgEx
EndDoc
GetTextMetricsA
EndPath
GetPixel
LineTo
SetColorSpace
RestoreDC
SetTextColor

kernel32

CopyFileA
DeleteFileA
lstrcmpiW
GetVersion
VirtualAlloc
GetCurrentProcessId
GetACP
IsDebuggerPresent
lstrlenW
GetCurrentProcess
GlobalFindAtomA
GetCommandLineA
lstrcmpiA
GetModuleHandleW
GetOEMCP
GetDriveTypeA
lstrlenA
SetCurrentDirectoryA
GetConsoleOutputCP

user32

GetMessagePos
GetInputState
CharNextA
GetDesktopWindow

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 177KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 79KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ