4668fc0c602e11be47ad1e7a70a03f5d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4668fc0c602e11be47ad1e7a70a03f5d_JaffaCakes118
Size

262KB
MD5

4668fc0c602e11be47ad1e7a70a03f5d
SHA1

760ca04f1aeec7b2ce64b1eb9904ac380a6ef2a3
SHA256

2be95c4b516e9cb0fba0a9386deb944d6622e4ba2324d1343242a49587d64226
SHA512

5e8c32c2a703461a5951e88fb4a53842b28b3acf28dc0d7bfae11cf1c9f50e1dce5671f3c7997da1bca357093898e0f84c8c89da21911e34133755cdc7feeba8
SSDEEP

3072:Cms3zOHFHFeNN8lvyvP93jwPRUNSm09YbqGan9pGco94iET:waxFJ0N3jw5UcmeMqGan9pGcJp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4668fc0c602e11be47ad1e7a70a03f5d_JaffaCakes118

Files

4668fc0c602e11be47ad1e7a70a03f5d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

974afe177a14e5428000bb5888582ca2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

LineTo
GetTextMetricsA
RestoreDC
GetPixel
SetViewportOrgEx
SetWindowExtEx
GetStockObject
SetBkColor
OffsetViewportOrgEx
MoveToEx
SetBrushOrgEx
UnrealizeObject
GetDIBColorTable

user32

CharNextA
GetDesktopWindow
GetMessagePos
GetInputState

kernel32

lstrcmpiA
DeleteFileA
lstrcmpA
GetProcessHeap
GetCurrentThread
SetCurrentDirectoryA
RemoveDirectoryA
GetCurrentProcessId
GetConsoleOutputCP
GetLastError
GetCommandLineW
GetOEMCP
lstrcmpiW
GetTickCount
IsDebuggerPresent
CopyFileA
GetACP
GetVersion
VirtualAlloc
GetCurrentThreadId

comctl32

InitCommonControls

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 176KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ