2b303292c02d5e6dce41d2efa6479a78_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2b303292c02d5e6dce41d2efa6479a78_JaffaCakes118
Size

43KB
MD5

2b303292c02d5e6dce41d2efa6479a78
SHA1

dc2b67c1c8ee3985d8be5edc172783220293b238
SHA256

9d2941af6841982c03393832ef13c68b0643ba69ef63cd14ec089558aad43ac5
SHA512

e323ee15658b010588c8e1ef25b7691f05509e7713ed90bdbcfb630b2c5340b4318a8b176cd586b2b8ec46229f7187ccb68dbed66dc5864fd68a0be5eba9cf1c
SSDEEP

768:bwG6I8XCp0du8av8tD9M0q4+wJls1tc0ZNmBUBzI2KMfwwZwPyuk:bwG6IeCp0dRrtpYUls1tn/mBUBzIAogp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b303292c02d5e6dce41d2efa6479a78_JaffaCakes118

Files

2b303292c02d5e6dce41d2efa6479a78_JaffaCakes118
.exe windows:5 windows x86 arch:x86

10ecd480951e440a15f2f49ccae0844d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

RemoveFontResourceW
EngFreeModule
DdEntry53
GetBkColor
FontIsLinked
DdEntry54
GdiDrawStream
PaintRgn
EndPath
EnumEnhMetaFile
GetTextExtentExPointWPri
RemoveFontResourceA
CombineTransform
EnumFontsW
GdiIsMetaPrintDC
SetICMMode
bMakePathNameW
SetWindowOrgEx
GetClipRgn
CLIPOBJ_ppoGetPath
XLATEOBJ_hGetColorTransform
GetCharWidthW
PlayEnhMetaFileRecord
GetMetaFileW
DdEntry47

msvcrt40

__fpecode
_ctype
_findfirst
?adjustfield@ios@@2JB
?underflow@filebuf@@UAEHXZ
perror
_getdrive
_nextafter
?lockptr@streambuf@@IAEPAU_CRT_CRITICAL_SECTION@@XZ
_ftime
??5istream@@QAEAAV0@AAG@Z
memcpy
_wcsnset
vswprintf
_setjmp3
?setbuf@fstream@@QAEPAVstreambuf@@PADH@Z
_copysign
_CxxThrowException
_fpclass
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZP6AXI0@Z@Z
_getdrives
??4ostream@@IAEAAV0@PAVstreambuf@@@Z
?xsgetn@streambuf@@UAEHPADH@Z
_wcsset
_cputs
_daylight
_rmdir
??_8strstream@@7Bostream@@@
??0strstreambuf@@QAE@H@Z
_chdrive
??1filebuf@@UAE@XZ
_wfopen
??4bad_typeid@@QAEAAV0@ABV0@@Z

opengl32

glRasterPos3dv
glRasterPos2dv
glGetTexEnviv
glGetLightiv
glVertex3d
glLoadMatrixf
glTexEnvi
glRasterPos2i
glMapGrid1d
glGetTexLevelParameteriv
wglChoosePixelFormat
glLightfv
glIsEnabled
glPushMatrix
glTexCoord4s
glDrawBuffer
glDrawElements
glTexCoord4sv
glRasterPos2iv
glGetError
glEnable
glVertex2i
wglUseFontOutlinesA
GlmfInitPlayback
glMatrixMode
glLoadIdentity
glRasterPos3fv
glPushName
glLoadMatrixd
glGetTexGenfv
wglGetCurrentContext
glColor3sv
glScissor
glEvalCoord2d
wglUseFontBitmapsW
glVertex3sv
glAlphaFunc
glPixelMapuiv
glArrayElement
glTexImage1D
glFogiv
glRasterPos2f
glEvalCoord1f
glTexParameteriv
glScalef
glLightf
glDeleteLists
glLightModelfv
glRectd
wglShareLists
glIndexdv
glEnd
glColor4fv
glGetMaterialfv
glTexImage2D
glDrawPixels
glTexCoord4d
glGetPixelMapuiv
glRasterPos2fv
glRasterPos4sv
wglDeleteContext
glColor3f
glPopName
glNewList
glHint
glVertex3i
glTexCoord1f
glIndexs
glTexParameterf
glCopyTexSubImage2D
glFogfv
glRasterPos2sv
glVertex3s
glVertex3fv
glVertex3dv
glGetMapdv
glColor4usv
glVertex3f
glColor3ub
glColorMaterial

kernel32

GetSystemWindowsDirectoryW
InterlockedExchangeAdd
SetupComm
VirtualAlloc
CloseProfileUserMapping
EnumSystemLocalesA
GetHandleContext
SignalObjectAndWait
WriteConsoleInputA
CreateDirectoryExW
SetTimeZoneInformation
EnumDateFormatsExW
VerLanguageNameW
ResetEvent
LoadLibraryA
GetConsoleScreenBufferInfo
EnumResourceTypesW
SetConsoleCursorPosition
DosPathToSessionPathA
SetSystemTime
CreateActCtxA
InitializeCriticalSection
IsValidLocale
GlobalFindAtomA
LocalFree
SetCommTimeouts
GlobalLock
SetThreadContext
CompareFileTime

w32topl

ToplHeapIsEmpty
ToplEdgeDestroy
ToplEdgeAssociate
ToplListFree
ToplGraphCreate
ToplSetAllocator
ToplScheduleIsEqual
ToplGraphNumberOfVertices
ToplScheduleValid
ToplAddEdgeSetToGraph
ToplIterGetObject
ToplAddEdgeToGraph
ToplIterAdvance
ToplSTHeapCostReduced
ToplListRemoveElem
ToplScheduleImport
ToplHeapInsert
ToplDeleteSpanningTreeEdges
ToplEdgeSetFromVertex
ToplGraphMakeRing
ToplEdgeInit
ToplScheduleMaxUnavailable
ToplIterCreate
ToplEdgeFree
ToplGraphDestroy
ToplVertexDestroy
ToplPScheduleValid
ToplVertexCreate
ToplIterFree
ToplEdgeCreate
ToplGraphInit
ToplVertexNumberOfInEdges
ToplVertexFree
ToplListAddElem
ToplGraphRemoveVertex
ToplListSetIter
ToplEdgeGetToVertex
ToplFree
ToplScheduleCreate
ToplIsToplException
ToplScheduleExportReadonly
ToplScheduleMerge
ToplSTHeapInit
ToplScheduleNumEntries
ToplVertexGetInEdge

iasacct

DllGetClassObject

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

10ecd480951e440a15f2f49ccae0844d

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

msvcrt40

opengl32

kernel32

w32topl

iasacct

Sections

.text Size: 30KB - Virtual size: 30KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 1KB - Virtual size: 43KB

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: 1024B - Virtual size: 1024B

.text
Size: 30KB - Virtual size: 30KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 1KB - Virtual size: 43KB

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 1024B - Virtual size: 1024B