084c168e08a89e489401c31a9f00616c_JaffaCakes118

General

Target

084c168e08a89e489401c31a9f00616c_JaffaCakes118
Size

105KB
MD5

084c168e08a89e489401c31a9f00616c
SHA1

8a3c264529c282f4ff04e16eede63802d3872071
SHA256

80d3cf6db5028a7aede75112d8f41037d3791714856f2efd3965d96dd0956078
SHA512

ebfe7a21296e194c90b725ca5e17d3a13076f8249bfb02104d1295a5d33ccfbcba9ef1e39999a48d98f84a2ca4fd78ad5ba6f852bfdb3807a0711dafbcaac9a9
SSDEEP

1536:SI5V/ZU89a5mUX7lQN5ukT7JCyi5agKAKQ10fAjx1mITPJkPOV2XQf3ywRjur1oF:RR9aVrGHRTOjx4OYOCwxuBo7KZK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
084c168e08a89e489401c31a9f00616c_JaffaCakes118

Files

084c168e08a89e489401c31a9f00616c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ea558eca6b8798c941cc0722aee59089

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDesktopWindow
GetParent
CharNextA
GetDC
TranslateMessage
GetSystemMetrics

gdi32

SelectObject
GetStockObject
SetMapMode
DeleteDC
GetDeviceCaps
RectVisible
GetTextMetricsA
CreatePen
SetTextAlign
CreatePalette
GetNearestPaletteIndex
LineTo
SelectPalette
GetClipBox
CreateFontIndirectA
RestoreDC
SaveDC
PatBlt
SetStretchBltMode
SetTextColor
CreateSolidBrush
GetPixel
GetObjectA
DeleteObject
CreateCompatibleDC

kernel32

lstrcmpA
CopyFileA
GetProcessHeap
GetCommandLineW
GetOEMCP
GetTickCount
GetConsoleOutputCP
GlobalFindAtomA
RemoveDirectoryA
GetUserDefaultLangID
GetCurrentProcessId
GetDriveTypeA
RemoveDirectoryW
GetACP
lstrlenA
GetWindowsDirectoryA
GetThreadLocale
SetCurrentDirectoryA
GetCurrentThread
QueryPerformanceCounter
DeleteFileA
lstrlenW
GetVersion
GetCurrentThreadId
MulDiv
DeleteFileW
GetCommandLineA
GetModuleHandleW
GetCurrentProcess
ExitProcess
GetStartupInfoA
GlobalFindAtomW
lstrcmpiA
IsDebuggerPresent
lstrcmpiW
VirtualAlloc
GetModuleHandleA

glu32

gluQuadricCallback

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ea558eca6b8798c941cc0722aee59089

Headers

File Characteristics

Imports

user32

gdi32

kernel32

glu32

Sections

.text Size: 21KB - Virtual size: 20KB

.data Size: 72KB - Virtual size: 71KB

.rsrc Size: 11KB - Virtual size: 11KB

.text
Size: 21KB - Virtual size: 20KB

.data
Size: 72KB - Virtual size: 71KB

.rsrc
Size: 11KB - Virtual size: 11KB