2f3d15dcc1e82aa4ce89667e3ce048a4_JaffaCakes118

General

Target

2f3d15dcc1e82aa4ce89667e3ce048a4_JaffaCakes118
Size

112KB
MD5

2f3d15dcc1e82aa4ce89667e3ce048a4
SHA1

94944328ecd7e69c8bd490f90696decf96cf42af
SHA256

96d6342ac762d98e4afd4d1e69616e5ced603fecf4247383af8aea620cc8b974
SHA512

98c669f11e17d64c4c52cc03668a545c6966016ce61da6a43b71923a34a3661bc47eb4f24cf9ced193d5a15bcd9fd36760153578d19a9fd515d44a4b18f55469
SSDEEP

1536:GUzEAYcTuEsJuugHWKTlIZd+bfiR5co5jdAwW1OlM8j7snCF:GMLYcTuENTHWKZI6b6B/1nsC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2f3d15dcc1e82aa4ce89667e3ce048a4_JaffaCakes118

Files

2f3d15dcc1e82aa4ce89667e3ce048a4_JaffaCakes118
.exe windows:5 windows x86 arch:x86

8e4eb347d789380d7923d9a2654661f4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetSystemMetrics
GetParent
CharNextA
GetDesktopWindow
TranslateMessage

gdi32

CreateFontIndirectA
LineTo
SetMapMode
SaveDC
CreatePen
DeleteDC
CreatePalette
GetDeviceCaps
GetPixel
SetTextColor
GetObjectA
SelectObject
GetStockObject
SetTextAlign
RectVisible
PatBlt
CreateSolidBrush
GetTextMetricsA
CreateCompatibleDC
SetPixel
SelectPalette
GetClipBox
SetStretchBltMode
DeleteObject
RestoreDC

kernel32

GetModuleHandleW
GetACP
GetOEMCP
DeleteFileW
SetCurrentDirectoryA
GlobalFindAtomA
GetThreadLocale
lstrlenW
GetStartupInfoA
GetCurrentThread
GetModuleHandleA
lstrcmpA
VirtualAlloc
QueryPerformanceCounter
VirtualFree
RemoveDirectoryA
lstrcmpiW
GetDriveTypeA
lstrlenA
CopyFileA
GetUserDefaultLangID
GetConsoleOutputCP
GetProcessHeap
GetWindowsDirectoryA
GetCommandLineW
GetVersion
RemoveDirectoryW
GlobalFindAtomW
DeleteFileA
IsDebuggerPresent
GetCurrentProcess
MulDiv
lstrcmpiA
GetTickCount
GetCommandLineA
GetCurrentProcessId
GetCurrentThreadId

glu32

gluQuadricCallback

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8e4eb347d789380d7923d9a2654661f4

Headers

File Characteristics

Imports

user32

gdi32

kernel32

glu32

Sections

.text Size: 14KB - Virtual size: 13KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 79KB - Virtual size: 79KB

.rsrc Size: 11KB - Virtual size: 10KB

.text
Size: 14KB - Virtual size: 13KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 79KB - Virtual size: 79KB

.rsrc
Size: 11KB - Virtual size: 10KB