3232546d0db1c75b4925e3c6ebc6fd92_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3232546d0db1c75b4925e3c6ebc6fd92_JaffaCakes118
Size

168KB
MD5

3232546d0db1c75b4925e3c6ebc6fd92
SHA1

06151db2c384b8309aadd66446e3edacf3ce4515
SHA256

b0bb4b45b5a46c9afdd41fc86d7d3a616f595853efbc5b78512f0ef3e77b3bee
SHA512

8b893e08b2ee9c47195000be33ec4623ccc0dfbd424b6df8144d65df35016be5c94ed617ba06ba55e8cf97c3b32e7e597844b34dee746479ad01c83137933e9b
SSDEEP

3072:HOLDvwhMiOzB+Ja2eSMAQJa+NrLsjq7xDRHT5ihP9Izjgx:H0Yhu+FeSM4CZZlTW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3232546d0db1c75b4925e3c6ebc6fd92_JaffaCakes118

Files

3232546d0db1c75b4925e3c6ebc6fd92_JaffaCakes118
.exe windows:5 windows x86 arch:x86

9325f1a1b1fa6a9d59ec70939ca68b2f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDC
CharNextA
TranslateMessage
GetParent
GetDesktopWindow
GetSystemMetrics

gdi32

LineTo
CreatePalette
CreateCompatibleDC
CreateFontIndirectA
PatBlt
RectVisible
SetTextColor
DeleteObject
SetStretchBltMode
CreateSolidBrush
GetObjectA
SelectPalette
SetTextAlign
GetClipBox
SetMapMode
GetDeviceCaps
DeleteDC
GetTextMetricsA
GetPixel
GetStockObject
RestoreDC
CreatePen
SelectObject
SaveDC

kernel32

MulDiv
GetCommandLineA
GetProcessHeap
GetCurrentProcessId
GetACP
RemoveDirectoryA
lstrcmpiA
GlobalFindAtomA
lstrcmpiW
lstrlenW
GetDriveTypeA
GetVersion
GetOEMCP
GetUserDefaultLangID
CopyFileA
GetWindowsDirectoryA
DeleteFileA
SetCurrentDirectoryA
GetCurrentThread
GetCurrentThreadId
IsDebuggerPresent
lstrlenA
GetTickCount
DeleteFileW
GetCurrentProcess
QueryPerformanceCounter
GetConsoleOutputCP
GetCommandLineW
GetModuleHandleW
GetModuleHandleA
GetThreadLocale
GetStartupInfoA
lstrcmpA
GlobalFindAtomW
VirtualAlloc
VirtualFree

glu32

gluNurbsCallback

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Mljvlhad
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Mbdkkobf
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9325f1a1b1fa6a9d59ec70939ca68b2f

Headers

File Characteristics

Imports

user32

gdi32

kernel32

glu32

Sections

.text Size: 11KB - Virtual size: 11KB

Mljvlhad Size: 512B - Virtual size: 4KB

.rdata Size: 25KB - Virtual size: 25KB

Mbdkkobf Size: 512B - Virtual size: 4KB

.data Size: 100KB - Virtual size: 99KB

.rsrc Size: 29KB - Virtual size: 28KB

.text
Size: 11KB - Virtual size: 11KB

Mljvlhad
Size: 512B - Virtual size: 4KB

.rdata
Size: 25KB - Virtual size: 25KB

Mbdkkobf
Size: 512B - Virtual size: 4KB

.data
Size: 100KB - Virtual size: 99KB

.rsrc
Size: 29KB - Virtual size: 28KB