241f0a3d9a64ff80fefcad4f8e028236_JaffaCakes118

General

Target

241f0a3d9a64ff80fefcad4f8e028236_JaffaCakes118
Size

101KB
MD5

241f0a3d9a64ff80fefcad4f8e028236
SHA1

56185f95b01aebb05ff8cda50c953118a1b57404
SHA256

040279a2a778bda288b74f5341d842d09078227dc6c3b386dafe8b4095840b86
SHA512

57428844015e424325576db2961e9e100b3e0cb2c046853b45c02f151410698fc7e93c89c63b0fb01fb387add442315e041e01a3b4066ff5aa8c9b22e14e5ead
SSDEEP

1536:itHktjCbJEZdITW4rZeOH/0oNFVS041FakR5Xwq/z9Ox2+t/US0jRxye80TA:cHkdemZ4FH/0ok041FakR5XPz9OxQv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
241f0a3d9a64ff80fefcad4f8e028236_JaffaCakes118

Files

241f0a3d9a64ff80fefcad4f8e028236_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e37e95186ad79c89c3a383fdfef88ee4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetParent
GetDC
GetSystemMetrics
GetDesktopWindow
TranslateMessage
CharNextA

kernel32

GetOEMCP
lstrcmpiW
GetUserDefaultLangID
MulDiv
lstrlenW
GetStartupInfoA
lstrcmpA
IsDebuggerPresent
RemoveDirectoryA
DeleteFileW
GlobalFindAtomW
lstrlenA
GetConsoleOutputCP
GetProcessHeap
GetModuleHandleA
lstrcmpiA
GetTickCount
GetWindowsDirectoryA
GetCurrentProcessId
QueryPerformanceCounter
GlobalFindAtomA
GetDriveTypeA
GetVersion
GetCurrentProcess
GetCommandLineA
CopyFileA
GetCurrentThreadId
RemoveDirectoryW
GetCurrentThread
SetCurrentDirectoryA
GetThreadLocale
GetModuleHandleW
GetCommandLineW
GetACP
ExitProcess
DeleteFileA
VirtualAlloc
VirtualFree

gdi32

RectVisible
GetObjectA
RestoreDC
CreateSolidBrush
CreatePen
DeleteObject
GetClipBox
CreateCompatibleDC
GetTextMetricsA
GetStockObject
CreatePalette
SetTextColor
PatBlt
SetStretchBltMode
SetMapMode
LineTo
GetDeviceCaps
SelectObject
CreateFontIndirectA
DeleteDC
SetTextAlign
GetNearestPaletteIndex
SaveDC
SelectPalette
GetPixel

glu32

gluQuadricCallback

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e37e95186ad79c89c3a383fdfef88ee4

Headers

File Characteristics

Imports

user32

kernel32

gdi32

glu32

Sections

.text Size: 20KB - Virtual size: 19KB

.data Size: 67KB - Virtual size: 67KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 20KB - Virtual size: 19KB

.data
Size: 67KB - Virtual size: 67KB

.rsrc
Size: 12KB - Virtual size: 12KB