f1775d7e8016a73bcb9195db3f7c5570_JaffaCakes118

General

Target

f1775d7e8016a73bcb9195db3f7c5570_JaffaCakes118
Size

94KB
MD5

f1775d7e8016a73bcb9195db3f7c5570
SHA1

27a665dc0a989745ad1b5b8db92bdbfd1fc11bc9
SHA256

6ffa25d27a704563c1335ca7dce1988d1eff98654b8d910d1e6f8a5d0e57fd58
SHA512

26cccfa3ae05bb6cf868513e8d433a327ddfaaac398e495cf94f58356ed6be72776849b0b908bf02b5635eeb27a6ec2a3a4f421c24a1fb67e285108807426d2e
SSDEEP

1536:W4Ifvu2l2b4fCvNKQu4SlL8I7o1oGCSw6t1/gCZ53L60QjzPSDOr/RRnRyy6:vIObQCUyI81/zrptGpjzPSDepRyy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f1775d7e8016a73bcb9195db3f7c5570_JaffaCakes118

Files

f1775d7e8016a73bcb9195db3f7c5570_JaffaCakes118
.exe windows:5 windows x86 arch:x86

82f609d5253bdb309c30642824b18896

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetObjectA
RectVisible
CreateCompatibleDC
PatBlt
LineTo
GetDeviceCaps
CreateFontIndirectA
SetStretchBltMode
SaveDC
GetStockObject
CreatePen
DeleteObject
SetTextAlign
CreatePalette
SetMapMode
DeleteDC
GetPixel
CreateSolidBrush
SelectPalette
GetClipBox
SetTextColor
RestoreDC
SelectObject
GetTextMetricsA
GetNearestPaletteIndex

kernel32

GetModuleHandleA
RemoveDirectoryA
lstrcmpiA
CopyFileA
GetCurrentThreadId
IsDebuggerPresent
GetProcessHeap
GetACP
GetWindowsDirectoryA
GetCurrentProcess
GetCommandLineA
QueryPerformanceCounter
GetTickCount
GetCurrentThread
GetStartupInfoA
lstrlenA
lstrcmpA
DeleteFileA
GetThreadLocale
GetConsoleOutputCP
GlobalFindAtomW
GetOEMCP
MulDiv
GetDriveTypeA
GetCurrentProcessId
DeleteFileW
GetVersion
GetUserDefaultLangID
GetModuleHandleW
GlobalFindAtomA
RemoveDirectoryW
lstrcmpiW
SetCurrentDirectoryA
ExitProcess
GetCommandLineW
VirtualAlloc

user32

TranslateMessage
GetDC
CharNextA
GetParent
GetDesktopWindow
GetSystemMetrics

glu32

gluQuadricCallback

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

82f609d5253bdb309c30642824b18896

Headers

File Characteristics

Imports

gdi32

kernel32

user32

glu32

Sections

.text Size: 21KB - Virtual size: 20KB

.data Size: 60KB - Virtual size: 59KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 21KB - Virtual size: 20KB

.data
Size: 60KB - Virtual size: 59KB

.rsrc
Size: 12KB - Virtual size: 12KB