2ad2349ba8ad2dfe1e7dd1b3197343b4_JaffaCakes118

General

Target

2ad2349ba8ad2dfe1e7dd1b3197343b4_JaffaCakes118
Size

113KB
MD5

2ad2349ba8ad2dfe1e7dd1b3197343b4
SHA1

53703c1563631aa18b2411698baad2e3bb6bf73a
SHA256

3ec402d02112c24ec73c65ac62b66ff395b2e68efa9921315bd6679f4159700c
SHA512

c51c62267184ca41eadc29f39c41279ea977a83b0e86bf272c186506d47e0eaaf7275a626e16f1f4da30f54b9cb0bdff659274c1b16b01722667d4c530a1beb1
SSDEEP

3072:XWXOP0awnsf69s2+ShiLl7DOJGuItMstAwgGWkN:XWXOP0Znm6kSMB6HIltgGWk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ad2349ba8ad2dfe1e7dd1b3197343b4_JaffaCakes118

Files

2ad2349ba8ad2dfe1e7dd1b3197343b4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f2ff76d938a2e1172551b945f3ac6de9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SaveDC
SetTextAlign
GetDeviceCaps
GetPixel
CreatePen
CreateFontIndirectA
SelectObject
CreateCompatibleDC
CreateSolidBrush
LineTo
CreatePalette
GetTextMetricsA
GetObjectA
DeleteDC
RectVisible
SetTextColor
PatBlt
GetClipBox
SelectPalette
SetMapMode
SetPixel
GetStockObject
SetStretchBltMode
DeleteObject
RestoreDC

user32

TranslateMessage
CharNextA
GetDesktopWindow
GetParent
GetSystemMetrics

kernel32

IsDebuggerPresent
GetCommandLineA
GetModuleHandleA
GetStartupInfoA
GetCurrentThread
GetCurrentThreadId
MulDiv
DeleteFileA
GetProcessHeap
GetUserDefaultLangID
SetCurrentDirectoryA
GetCurrentProcessId
GetModuleHandleW
GetCommandLineW
GetDriveTypeA
GetConsoleOutputCP
lstrcmpiW
lstrcmpA
GetThreadLocale
CopyFileA
RemoveDirectoryA
GetCurrentProcess
DeleteFileW
RemoveDirectoryW
lstrlenA
GetACP
GetVersion
GetOEMCP
lstrlenW
GlobalFindAtomW
QueryPerformanceCounter
lstrcmpiA
GlobalFindAtomA
GetTickCount
VirtualAlloc
VirtualFree

glu32

gluQuadricCallback

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f2ff76d938a2e1172551b945f3ac6de9

Headers

File Characteristics

Imports

gdi32

user32

kernel32

glu32

Sections

.text Size: 14KB - Virtual size: 13KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 78KB - Virtual size: 78KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 14KB - Virtual size: 13KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 78KB - Virtual size: 78KB

.rsrc
Size: 12KB - Virtual size: 12KB