574c0c7a51e94411de12c632b6c87477_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

574c0c7a51e94411de12c632b6c87477_JaffaCakes118
Size

694KB
MD5

574c0c7a51e94411de12c632b6c87477
SHA1

cff66879b766892493e25f698a7429d34932fb15
SHA256

0db1ee9f6de7b6d41cd4702659c9b42000678de73db2e98f244a308697bb9fb3
SHA512

eeb7ba881f110d5fb2163a3140fd8998aa5d62c3b51d44e46859731e29ae598ecece538d640f43bb0550db1ef0b06eface8f44631dcf052cbc6fbe5faebcfa04
SSDEEP

12288:zD5/Oo2ROUs7a4/oTuCzAMkaJSTQi/y7aaQpFAYNMoApTpGzfAYZqmi:f5/GsRwTTsMsTQ0yuvpnMTpGclh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
574c0c7a51e94411de12c632b6c87477_JaffaCakes118

Files

574c0c7a51e94411de12c632b6c87477_JaffaCakes118
.exe windows:4 windows x86 arch:x86

49f8081a852b8ba4fdb50bce38b4a7d6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
GetVersion
GetModuleHandleA
LocalFree
GlobalAlloc
GetFileSize
GetCommandLineA

gdi32

GetDeviceCaps
BitBlt
PatBlt
GetTextColor
GetTextExtentPoint32A
CreateFontIndirectA
SetROP2
MoveToEx
GetObjectA
ExtTextOutA
SetBkMode
GetBkColor
CreateCompatibleDC
GetTextMetricsA
DeleteObject
GetPixel
LineTo
CreateSolidBrush

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 672KB - Virtual size: 676KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 724KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ