094972bedfa03d5f5b47724ec5dc3e50_JaffaCakes118

General

Target

094972bedfa03d5f5b47724ec5dc3e50_JaffaCakes118
Size

99KB
MD5

094972bedfa03d5f5b47724ec5dc3e50
SHA1

539584809a92863f4ecff85fd644232975681942
SHA256

0c031611d0b2548a8a255e6874e8b45299692e410ab2f470791a4a03a5ba5e2f
SHA512

befcd5ae26cc6ff318b66ca7d46cd80762870280ca25eaa49dda5fd858090d42cacd83577d030320a841cd0d8006138a0e8d2617b518d0fec82bbc6f1d25e332
SSDEEP

1536:3azcACWtBAmFbNolyymQ1sTAvZ6j3ZDU6gMYYeNdeE0LuafacX4rIDm:3amWtBAmFqVnR6j3ZDU6gnME0CWdD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
094972bedfa03d5f5b47724ec5dc3e50_JaffaCakes118

Files

094972bedfa03d5f5b47724ec5dc3e50_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7ee2cb4224819ddcbe8d021c050a1a40

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDesktopWindow
CharNextA
TranslateMessage
GetDC
GetParent
GetSystemMetrics

gdi32

RestoreDC
SelectObject
SetStretchBltMode
GetObjectA
GetPixel
CreatePalette
GetStockObject
SetTextColor
DeleteObject
SetMapMode
CreateFontIndirectA
RectVisible
CreatePen
GetDeviceCaps
CreateCompatibleDC
CreateSolidBrush
GetTextMetricsA
DeleteDC
SetTextAlign
LineTo
PatBlt
GetClipBox
SelectPalette
SaveDC
GetNearestPaletteIndex

kernel32

GetCurrentProcessId
CopyFileA
IsDebuggerPresent
GetProcessHeap
GlobalFindAtomW
lstrlenW
GetVersion
RemoveDirectoryA
GetTickCount
SetCurrentDirectoryA
GetCurrentThread
GlobalFindAtomA
MulDiv
GetStartupInfoA
GetCommandLineA
lstrcmpA
DeleteFileA
GetModuleHandleW
GetWindowsDirectoryA
GetCurrentThreadId
lstrcmpiW
lstrcmpiA
GetDriveTypeA
GetOEMCP
GetThreadLocale
lstrlenA
GetUserDefaultLangID
QueryPerformanceCounter
GetCurrentProcess
GetConsoleOutputCP
GetACP
GetCommandLineW
RemoveDirectoryW
GetModuleHandleA
DeleteFileW
ExitProcess
VirtualAlloc
VirtualFree

glu32

gluQuadricCallback

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7ee2cb4224819ddcbe8d021c050a1a40

Headers

File Characteristics

Imports

user32

gdi32

kernel32

glu32

Sections

.text Size: 20KB - Virtual size: 19KB

.data Size: 66KB - Virtual size: 66KB

.rsrc Size: 12KB - Virtual size: 11KB

.text
Size: 20KB - Virtual size: 19KB

.data
Size: 66KB - Virtual size: 66KB

.rsrc
Size: 12KB - Virtual size: 11KB