08a44679d3a0c338e6d129bc0728ac1f_JaffaCakes118

General

Target

08a44679d3a0c338e6d129bc0728ac1f_JaffaCakes118
Size

113KB
MD5

08a44679d3a0c338e6d129bc0728ac1f
SHA1

5582ebe77e1fe42ddd89b7703a98bb10d7bcc23e
SHA256

d44e2c077e53ec147d26d8cb57319fcf15ffbc21683915be6f574d4cb4a7d196
SHA512

46a6fa2f919491b690f69541f9927d75a1d9906997daf0dd4564ca70877eb66f0594e605a241b6ed8287df593437a9ee1b9843fdc77c6530d9c427d3ce3df6e5
SSDEEP

3072:+9FgGp4OZFpSyTeR1kXYBjnog9n+pIyPUELRao2ZOi:+9eGtZFsyVoBjnogEpIIRao2ZO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
08a44679d3a0c338e6d129bc0728ac1f_JaffaCakes118

Files

08a44679d3a0c338e6d129bc0728ac1f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e2c1caa242299c748cd0ef75beb148cb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

LineTo
DeleteDC
SetMapMode
SelectObject
CreateFontIndirectA
RectVisible
SaveDC
SelectPalette
GetTextMetricsA
GetPixel
SetTextAlign
CreateSolidBrush
SetStretchBltMode
DeleteObject
RestoreDC
CreatePen
GetStockObject
GetDeviceCaps
SetTextColor
CreateCompatibleDC
CreatePalette
PatBlt
GetClipBox
GetObjectA
SetPixel

kernel32

GlobalFindAtomA
lstrlenA
QueryPerformanceCounter
GetProcessHeap
lstrcmpiW
GetUserDefaultLangID
GetWindowsDirectoryA
GetCurrentThreadId
GetStartupInfoA
DeleteFileA
GetDriveTypeA
lstrlenW
GetModuleHandleW
GetCommandLineA
lstrcmpiA
GetTickCount
CopyFileA
lstrcmpA
GetACP
GetThreadLocale
GlobalFindAtomW
GetConsoleOutputCP
GetCurrentThread
GetOEMCP
GetModuleHandleA
RemoveDirectoryA
GetCommandLineW
GetCurrentProcessId
VirtualAlloc
SetCurrentDirectoryA
VirtualFree
IsDebuggerPresent
MulDiv
GetVersion
GetCurrentProcess
RemoveDirectoryW
DeleteFileW

user32

TranslateMessage
CharNextA
GetSystemMetrics
GetDesktopWindow
GetParent

glu32

gluQuadricCallback

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 79KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e2c1caa242299c748cd0ef75beb148cb

Headers

File Characteristics

Imports

gdi32

kernel32

user32

glu32

Sections

.text Size: 13KB - Virtual size: 13KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 79KB - Virtual size: 78KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 13KB - Virtual size: 13KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 79KB - Virtual size: 78KB

.rsrc
Size: 12KB - Virtual size: 12KB