43c87a0718d15310c74ab34458f9b1d1_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

43c87a0718d15310c74ab34458f9b1d1_JaffaCakes118
Size

117KB
MD5

43c87a0718d15310c74ab34458f9b1d1
SHA1

e639723e7e7fa9cca4b8ecffba64e07ae17a11a8
SHA256

b644f5393d6a9f80c4bd3aef2f4a0326d573d894292d6aa32030476ca8065e10
SHA512

f9ad0dce86603715c9746efc0b4ec13ed61afe42dcc7eeaf78f4016dcd68793f9b2b836662a67f558240a17f118080713252fb424d25ffc59c00a2456f9041f6
SSDEEP

1536:xJ7qOSjIcKx1hyohuhDGvv/J1ztXZcuKihomHWO6YRW3HvTq863wZ:xJ70sciMohKGn/J1zNZcumm2HvTq8qw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
43c87a0718d15310c74ab34458f9b1d1_JaffaCakes118

Files

43c87a0718d15310c74ab34458f9b1d1_JaffaCakes118
.exe windows:5 windows x86 arch:x86

ffee25fd21ae819d3e719d21461d536e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

RectVisible
GetObjectA
CreatePalette
CreateCompatibleDC
LineTo
SetTextAlign
DeleteObject
SelectObject
GetDeviceCaps
RestoreDC
CreateSolidBrush
SaveDC
GetTextMetricsA
SelectPalette
SetMapMode
GetStockObject
CreateFontIndirectA

user32

GetDesktopWindow
GetDC
CharNextA
GetParent
GetSystemMetrics
TranslateMessage

kernel32

QueryPerformanceCounter
lstrlenW
GetModuleHandleA
lstrcmpiA
RemoveDirectoryA
GlobalFindAtomA
GetCommandLineA
lstrcmpiW
GetSystemTime
GetWindowsDirectoryA
lstrcmpA
CopyFileA
lstrlenA
DeleteFileA
RemoveDirectoryW
FindClose
VirtualAlloc
VirtualFree

glu32

gluNurbsCallback

Sections

.text
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ