2ef446bb2adbabdc204f9361d2cfc375_JaffaCakes118 | Triage

Sharing

General

Target

2ef446bb2adbabdc204f9361d2cfc375_JaffaCakes118
Size

1021KB
MD5

2ef446bb2adbabdc204f9361d2cfc375
SHA1

7d7d9f9bfa0e8d9a10c4e0563d402434954c33cc
SHA256

0ede430ea40b44c31f4b8fd55390e6ad6fa9ca5c04ccd92eac326de6e6b375cf
SHA512

0df0553bd37f314a8053b5844c3cfa3ab4b796558fc509ad2cf21e18530a57798796c3d1e8b5c0e00d4f171f0265476c87fea126bfb6e28d9ef263984d6ecd63
SSDEEP

24576:jTB2uRKaKJlVjYJP/R3at9+ZDz8DIFl4IT:Z2uRK1jYO9YDz8DIBT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ef446bb2adbabdc204f9361d2cfc375_JaffaCakes118

Files

2ef446bb2adbabdc204f9361d2cfc375_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3d213c903557b9823a2a33dc2991f16e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetProcAddress
LoadLibraryA
CloseHandle
GlobalAlloc
GetStartupInfoA
lstrcpyA
Sleep
GetVersionExA
LocalAlloc
GetCommandLineA
lstrlenA
GetLastError
GetFileSize
GlobalFree
FreeLibrary

msvcrt

_except_handler3
_adjust_fdiv
_exit
_acmdln
__p__commode
wcschr
__CxxFrameHandler
__set_app_type
rand
_controlfp
__p__fmode
memmove
__getmainargs
wcstoul

gdi32

GetTextColor
GetTextExtentPoint32A
GetPixel
GetObjectA
CreateFontIndirectA
BitBlt
SetPixel
CreateSolidBrush
GetBkColor

Sections

.text
Size: 512B - Virtual size: 471B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 418B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1014KB - Virtual size: 2.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ