3b59bbd36218fdc9f785c67c5554e251_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3b59bbd36218fdc9f785c67c5554e251_JaffaCakes118
Size

692KB
MD5

3b59bbd36218fdc9f785c67c5554e251
SHA1

0a58b833f9993aac899436f0419912ad6639f521
SHA256

01bd877df0a651140aa577653b3222007bc8b41f974e35d47d32a24aac77ab3a
SHA512

d98613a15e5d074fbab52a24102f5487cf2851fa92238121e8048659720c8452ae92052bc96b554e2e7e87f877d7c374170307eabf9fa650ef2b452bbc6c782b
SSDEEP

12288:DqWdLhBuk09ISMyIK6wwKHHRRIpTsZGeKK5NxN/R9iVbrhz:D7hkB9QjwwKnRRIQGRK5NvInhz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3b59bbd36218fdc9f785c67c5554e251_JaffaCakes118

Files

3b59bbd36218fdc9f785c67c5554e251_JaffaCakes118
.exe windows:4 windows x86 arch:x86

aa1463e54c01ab15bbadfe8ac66e9801

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
GetVersion
GetModuleHandleA
GetTickCount
GetFileSize
Sleep
FreeLibrary
GetVersionExA
LocalAlloc
CloseHandle
lstrcatA

gdi32

CreateFontIndirectA
GetBkColor
GetPixel
GetStockObject
CreateSolidBrush
CreateCompatibleDC
GetTextExtentPoint32A
LineTo
SelectObject
GetObjectA
DeleteObject
GetTextColor
GetDeviceCaps
SetPixel
SetBkMode
GetTextMetricsA
BitBlt
MoveToEx
PatBlt

user32

EndDialog
LoadIconA
GetSysColor
DispatchMessageA
DestroyWindow
DefWindowProcA

msvcrt

__p__fmode
_controlfp
wcslen
_initterm
__setusermatherr

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 686KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ