2e6f63739e16b19cbf0386d2c731fab2_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2e6f63739e16b19cbf0386d2c731fab2_JaffaCakes118
Size

172KB
MD5

2e6f63739e16b19cbf0386d2c731fab2
SHA1

f11c758718a4c9d395b95ffe08b3d3f99172aabe
SHA256

e22dd2df83a4011a170d9671b9eb3e3d26f15a89af873997893bfc0aeac60952
SHA512

73709f53898cb47dd13b6311b0429aa06ab8006f582cc4e60a5fde784f812525eae05e7b3f0226f623dc772887405f6d0626ff57c51f746fd00919f0c52cec76
SSDEEP

1536:uFfDuVpPsT0v872VmcTYkj540FbAWOa8odHwrZi6EOV7N3D3kkQ:ulurPw0k0Nj54jkrHwvN3D3C

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e6f63739e16b19cbf0386d2c731fab2_JaffaCakes118

Files

2e6f63739e16b19cbf0386d2c731fab2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f410f90f0bfa9c70a2b0a5ad2535bff3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetParent
GetDC
CharNextA
TranslateMessage
GetDesktopWindow
GetSystemMetrics

gdi32

RectVisible
LineTo
SetTextColor
CreateCompatibleDC
DeleteObject
SaveDC
CreatePalette
GetObjectA
DeleteDC
RestoreDC
GetDeviceCaps
SetStretchBltMode
SetMapMode
GetClipBox
GetTextMetricsA
SelectObject
GetPixel
CreateSolidBrush
SelectPalette

kernel32

GetWindowsDirectoryA
CopyFileA
VirtualAlloc
lstrcmpA
VirtualFree
GetCommandLineA
lstrcmpiW
RemoveDirectoryA
lstrlenA
lstrlenW
RemoveDirectoryW
FindClose
GetModuleHandleA
GlobalFindAtomA
GetSystemTime
DeleteFileA
QueryPerformanceCounter
lstrcmpiA

glu32

gluNurbsCallback

Sections

.text
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ