1c48c342d9052377a924e77d1dbf2b27_JaffaCakes118

General

Target

1c48c342d9052377a924e77d1dbf2b27_JaffaCakes118
Size

114KB
MD5

1c48c342d9052377a924e77d1dbf2b27
SHA1

36fbf9cf857c5fa732875aa38186c0c801ceb111
SHA256

d6ef0212027eabd2459d73986953ac067173f6051044b5117250895208eba6bc
SHA512

e3532a8bfce3c14d701e006996f02136aa045543c8f7690761aa0e0bb48452f577b086e548703f3ae89b82cc494edd6c4f4f11668743bc37356ede2c1531b8ad
SSDEEP

3072:oQaXn+D2QpkWAbLha0yQ+/KChzKfGRFV10WIw51e2:IXnYFyha0yQ+CChuSN05

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1c48c342d9052377a924e77d1dbf2b27_JaffaCakes118

Files

1c48c342d9052377a924e77d1dbf2b27_JaffaCakes118
.exe windows:5 windows x86 arch:x86

b30cbb22518225b67a1c251d6ecafd2b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetParent
GetSystemMetrics
TranslateMessage
CharNextA
GetDesktopWindow

gdi32

RectVisible
LineTo
GetPixel
CreatePalette
SetStretchBltMode
CreatePen
SetTextAlign
SaveDC
DeleteObject
CreateCompatibleDC
SelectPalette
GetClipBox
GetTextMetricsA
RestoreDC
GetStockObject
SetMapMode
SelectObject
GetDeviceCaps
CreateFontIndirectA
SetTextColor
PatBlt
GetObjectA
CreateSolidBrush
SetPixel
DeleteDC

kernel32

GetVersion
GetCommandLineA
MulDiv
GetOEMCP
lstrcmpA
GetCommandLineW
lstrcmpiW
DeleteFileW
lstrlenA
GetProcessHeap
GetWindowsDirectoryA
GetUserDefaultLangID
GetStartupInfoA
GetConsoleOutputCP
CopyFileA
GlobalFindAtomA
SetCurrentDirectoryA
DeleteFileA
GlobalFindAtomW
GetCurrentThread
GetCurrentProcessId
lstrcmpiA
VirtualAlloc
GetDriveTypeA
IsDebuggerPresent
GetACP
VirtualFree
GetModuleHandleA
lstrlenW
GetThreadLocale
GetTickCount
QueryPerformanceCounter
RemoveDirectoryW
GetCurrentThreadId
GetModuleHandleW
RemoveDirectoryA
GetCurrentProcess

glu32

gluQuadricCallback

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b30cbb22518225b67a1c251d6ecafd2b

Headers

File Characteristics

Imports

user32

gdi32

kernel32

glu32

Sections

.text Size: 14KB - Virtual size: 14KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 79KB - Virtual size: 79KB

.rsrc Size: 11KB - Virtual size: 88KB

.text
Size: 14KB - Virtual size: 14KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 79KB - Virtual size: 79KB

.rsrc
Size: 11KB - Virtual size: 88KB