f80091102004d5306426a187a4a684a0_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

f80091102004d5306426a187a4a684a0_JaffaCakes118
Size

304KB
MD5

f80091102004d5306426a187a4a684a0
SHA1

1f1a5d1da04f252aba50d5b1cfc8ab367cf32e3e
SHA256

3bd89c36a8dd6f25d82d5613850ed8f8ce0d432e3010e1e851de1d0212db5e17
SHA512

80a8d2161753df0fe9de6dd822ed243df630267a05c5c91b4b964c5a4993dc1b4d905c9ea2889ad933abaf0cce27fd6069f0ef00c2de3b2d405187d68260fcbf
SSDEEP

6144:rfm+hZfun9WnWDMzgU/gjRrCePq9p5Dyawk15v512gDsB:vqkgadBppyawX5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f80091102004d5306426a187a4a684a0_JaffaCakes118

Files

f80091102004d5306426a187a4a684a0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3f25fcb6381903e44c1bc056ae93e5b5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

opengl32

glViewport
wglMakeCurrent
glShadeModel
glEvalMesh2
glRotatef

kernel32

GetACP
GetCurrentThread
GetCurrentProcess
GetSystemInfo
GetLastError
GetModuleHandleW
ExitProcess
GetProcessHeap
GetModuleHandleA
GetCommandLineA
VirtualAlloc
GetEnvironmentVariableW
SetCommConfig
GetCurrentThreadId
GetCommandLineW
LoadLibraryExW
SetMailslotInfo
GetTickCount
GetVersion
Sleep
UpdateResourceW
InterlockedDecrement
GetDriveTypeW
GetEnvironmentVariableA
GetCurrentProcessId
IsDBCSLeadByte
FreeResource

nddeapi

ord611
ord601
ord602
ord609
ord608
ord500
ord604
ord506
ord613
ord509
ord504
ord503
ord603
ord501
ord512
ord511
ord612
ord605
ord600

msvcrt

__p__osver
__p__iob
_strrev
fgetpos
?name@type_info@@QBEPBDXZ
__argv
ferror
sscanf
wcschr
_ismbcdigit
?_set_new_mode@@YAHH@Z
_amsg_exit
_mbsicmp
_ultow
__p___mb_cur_max
rand
_access

user32

DdeFreeStringHandle
GetSystemMetrics
FindWindowExW
GetMouseMovePointsEx
EqualRect
MessageBeep
GetDC
PostMessageW
DefWindowProcA

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 159KB - Virtual size: 242KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 117KB - Virtual size: 213KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3f25fcb6381903e44c1bc056ae93e5b5

Headers

DLL Characteristics

File Characteristics

Imports

opengl32

kernel32

nddeapi

msvcrt

user32

Sections

.text Size: 6KB - Virtual size: 6KB

DATA Size: 512B - Virtual size: 44KB

.orpc Size: 159KB - Virtual size: 242KB

.edata Size: 117KB - Virtual size: 213KB

.rsrc Size: 19KB - Virtual size: 18KB

.text
Size: 6KB - Virtual size: 6KB

DATA
Size: 512B - Virtual size: 44KB

.orpc
Size: 159KB - Virtual size: 242KB

.edata
Size: 117KB - Virtual size: 213KB

.rsrc
Size: 19KB - Virtual size: 18KB