2e257c12d1bf599e1e51a33935783e10_JaffaCakes118

General

Target

2e257c12d1bf599e1e51a33935783e10_JaffaCakes118
Size

99KB
MD5

2e257c12d1bf599e1e51a33935783e10
SHA1

cdbc014d612005bda8b4887a2b50622f48f6ce1f
SHA256

8c8170740c675a4a901c6977dc4811bd09085fdea6b362a22df3b43e74bc05ed
SHA512

d4f0790eef02a607c22ce47df9aae6e61747a239a0a0d310a78f4e662dcf0e1db4cc17b5ac9d1ad790a2242d0a63bff32b407ccab1581fe544df3949a654c5ea
SSDEEP

1536:K3sPl3fSh7bOSGNYXoetq9vr0jneC/goUcJtUsQnm9PMaypxFZw5zk2A8Dt4g7k1:AlbOQjcv6eCL/QgyR6I7Tg7kD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e257c12d1bf599e1e51a33935783e10_JaffaCakes118

Files

2e257c12d1bf599e1e51a33935783e10_JaffaCakes118
.exe windows:5 windows x86 arch:x86

de28a1ee28415dc632b69313c0a29a7a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetTextColor
SetTextAlign
SetStretchBltMode
GetPixel
GetNearestPaletteIndex
RectVisible
RestoreDC
SelectPalette
GetClipBox
PatBlt
SetMapMode
CreateFontIndirectA
GetDeviceCaps
LineTo
SaveDC
DeleteObject
SelectObject
CreateCompatibleDC
DeleteDC
CreatePalette
CreateSolidBrush
GetTextMetricsA
GetObjectA
CreatePen
GetStockObject

kernel32

GetVersion
lstrcmpiW
RemoveDirectoryW
GetWindowsDirectoryA
GetTickCount
GetModuleHandleW
GlobalFindAtomA
GetOEMCP
GetCurrentProcessId
IsDebuggerPresent
GetCommandLineW
GetCurrentThreadId
DeleteFileW
lstrlenW
GetProcessHeap
GlobalFindAtomW
lstrcmpiA
lstrcmpA
GetDriveTypeA
CopyFileA
ExitProcess
GetConsoleOutputCP
GetCurrentProcess
GetModuleHandleA
GetUserDefaultLangID
SetCurrentDirectoryA
GetCurrentThread
RemoveDirectoryA
QueryPerformanceCounter
GetCommandLineA
GetACP
GetThreadLocale
lstrlenA
VirtualAlloc
MulDiv
DeleteFileA

user32

GetDC
GetDesktopWindow
GetSystemMetrics
CharNextA
TranslateMessage
GetParent

glu32

gluQuadricCallback

Sections

.text
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

de28a1ee28415dc632b69313c0a29a7a

Headers

File Characteristics

Imports

gdi32

kernel32

user32

glu32

Sections

.text Size: 22KB - Virtual size: 21KB

.data Size: 63KB - Virtual size: 63KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 22KB - Virtual size: 21KB

.data
Size: 63KB - Virtual size: 63KB

.rsrc
Size: 12KB - Virtual size: 12KB