3aca9a3e87cecae54f5432ee2f98f7bb_JaffaCakes118 | Triage

Sharing

General

Target

3aca9a3e87cecae54f5432ee2f98f7bb_JaffaCakes118
Size

22KB
MD5

3aca9a3e87cecae54f5432ee2f98f7bb
SHA1

2698d8a16ca87a126e241eb07244a47d6b02e573
SHA256

1ac2da83f9ba199ff4dd219e8e0fcf3619a6988416da2b3aaeb1f07ef038219d
SHA512

8194c342e7252716acb8054748500647e1ad04cd91248182b0a8713b605243d92f99fc60c711290f1cc06527a84895b4117746a63ba5797e34830162ca3dc27a
SSDEEP

384:HnymjrcG+XCt1QMMMMMMMMMMMN88888Qbk48uqYBRF:H33Z+y1QMMMMMMMMMMMN88888QAF9YTF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3aca9a3e87cecae54f5432ee2f98f7bb_JaffaCakes118

Files

3aca9a3e87cecae54f5432ee2f98f7bb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9347af2971ebce77f9cac184e4b3352c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
GetCommandLineA
GetVersionExA
LocalFree
GetLastError
GlobalAlloc
Sleep

gdi32

GetDeviceCaps
GetTextColor
MoveToEx
SelectObject
SetPixel
CreateFontIndirectA
GetTextExtentPoint32A
SetROP2
BitBlt
GetStockObject
SetBkMode
GetPixel

user32

BeginPaint
ShowWindow
PostQuitMessage
GetFocus
GetClientRect

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ