55a7c0f811f6b8528ed47b8f438c4bc2_JaffaCakes118 | Triage

Sharing

General

Target

55a7c0f811f6b8528ed47b8f438c4bc2_JaffaCakes118
Size

113KB
MD5

55a7c0f811f6b8528ed47b8f438c4bc2
SHA1

54a842699b520ce12ce9497ea28ba6dbf64cc5ee
SHA256

a9b5192b99d6436130a92fc01ddc0a22874912882b2ff10aacb367c3d1192784
SHA512

d611a5653a93ac331b02a1999defb5f7b785ed70586d67c5004e0d4b03e30039f8da75ec4b1ea63bbefbb29b3482e418c90898088411efa836610df677d04b1a
SSDEEP

3072:QknFfDO2uRv8tlPN+kcuqmE5gZDqewkH:zQHU7wxjyu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
55a7c0f811f6b8528ed47b8f438c4bc2_JaffaCakes118

Files

55a7c0f811f6b8528ed47b8f438c4bc2_JaffaCakes118
.exe windows:5 windows x86 arch:x86

7f8d016ffa1ec66cbf048921b2a6cc43

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharNextA
GetDC
GetDesktopWindow
TranslateMessage
GetParent
GetSystemMetrics

gdi32

SetTextColor
GetStockObject
GetPixel
SaveDC
SetTextAlign
GetClipBox
GetObjectA
GetDeviceCaps
DeleteDC
RestoreDC
CreateSolidBrush
SelectPalette
GetTextMetricsA
CreateFontIndirectA
CreatePalette
LineTo
CreateCompatibleDC
SetStretchBltMode
SetMapMode
DeleteObject
SelectObject

kernel32

GetModuleHandleA
lstrlenW
GetSystemTime
GetWindowsDirectoryA
QueryPerformanceCounter
lstrlenA
GetCommandLineA
RemoveDirectoryA
DeleteFileA
lstrcmpiA
RemoveDirectoryW
FindClose
lstrcmpA
lstrcmpiW
GlobalFindAtomA
CopyFileA
VirtualAlloc
VirtualFree

glu32

gluNurbsCallback

Sections

.text
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ