1695f5dc34c0b27b36a0ed3d9df0a8cc_JaffaCakes118

General

Target

1695f5dc34c0b27b36a0ed3d9df0a8cc_JaffaCakes118
Size

96KB
MD5

1695f5dc34c0b27b36a0ed3d9df0a8cc
SHA1

71098e8ac3caa00667b8ba9472ebca973fea2803
SHA256

d31522891cd031b0288510bde557048f36a95462a6d0597cce3d8eb376490888
SHA512

6e13681572af1151e70f8c2882652b6767577e515808f61844cce49e5689f8f084bc79db60c318172bad3fc3576afba144a117bbd995f70f611e013074fc6ed5
SSDEEP

3072:TNfOL1PhYaA6au4/CMsXXbq0tigjzFys:TUJPhYwvAoXm0Mgj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1695f5dc34c0b27b36a0ed3d9df0a8cc_JaffaCakes118

Files

1695f5dc34c0b27b36a0ed3d9df0a8cc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

cb7445177e006264626e2b83cd59de33

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SaveDC
CreatePalette
SetStretchBltMode
CreateFontIndirectA
PatBlt
SelectObject
GetClipBox
SetTextAlign
DeleteDC
CreatePen
GetObjectA
GetDeviceCaps
SelectPalette
CreateSolidBrush
CreateCompatibleDC
RectVisible
SetMapMode
GetNearestPaletteIndex
GetPixel
LineTo
GetStockObject
DeleteObject
GetTextMetricsA
SetTextColor
RestoreDC

user32

TranslateMessage
GetSystemMetrics
GetDesktopWindow
GetDC
CharNextA
GetParent

kernel32

lstrlenW
GetModuleHandleW
IsDebuggerPresent
DeleteFileW
GlobalFindAtomA
GetUserDefaultLangID
DeleteFileA
GetModuleHandleA
GetCommandLineA
GetCommandLineW
GetStartupInfoA
lstrlenA
GlobalFindAtomW
GetDriveTypeA
GetTickCount
GetThreadLocale
RemoveDirectoryW
GetWindowsDirectoryA
lstrcmpiA
GetCurrentProcessId
RemoveDirectoryA
GetACP
GetVersion
MulDiv
lstrcmpA
GetOEMCP
GetCurrentProcess
GetCurrentThread
SetCurrentDirectoryA
lstrcmpiW
ExitProcess
QueryPerformanceCounter
CopyFileA
GetCurrentThreadId
GetConsoleOutputCP
VirtualAlloc
GetProcessHeap
VirtualFree

glu32

gluQuadricCallback

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cb7445177e006264626e2b83cd59de33

Headers

File Characteristics

Imports

gdi32

user32

kernel32

glu32

Sections

.text Size: 20KB - Virtual size: 20KB

.data Size: 62KB - Virtual size: 61KB

.rsrc Size: 13KB - Virtual size: 12KB

.text
Size: 20KB - Virtual size: 20KB

.data
Size: 62KB - Virtual size: 61KB

.rsrc
Size: 13KB - Virtual size: 12KB