2ff3431c179af95b42d98436f1baed96_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2ff3431c179af95b42d98436f1baed96_JaffaCakes118
Size

169KB
MD5

2ff3431c179af95b42d98436f1baed96
SHA1

1d1fe15998c23fad11e28492c1ce702715330be4
SHA256

d400254249db6a621b42581626b27567d01feb70f1953988efb3e6b41eb1afba
SHA512

8b76ccd0b316d7a569e182716768d91e3fc785b71d4ab29e523bf04a16b5f7a1b7b054505bb70393759e4a300ff61a8aeea8855d7a71758c5ababaf3ffd5c133
SSDEEP

3072:RPPKOx2ke28e7SAeYlHsar2ebPqwZMtqfWOlYpkkLju:9PKOxZLm+drRPvMeGu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ff3431c179af95b42d98436f1baed96_JaffaCakes118

Files

2ff3431c179af95b42d98436f1baed96_JaffaCakes118
.exe windows:5 windows x86 arch:x86

1097b1db5e99f2d1db22a4987c4f9a97

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

RectVisible
PatBlt
SelectObject
SetMapMode
GetStockObject
CreateFontIndirectA
SetTextColor
GetObjectA
LineTo
SelectPalette
GetClipBox
GetDeviceCaps
SetTextAlign
RestoreDC
CreatePen
CreateSolidBrush
SetStretchBltMode
CreateCompatibleDC
DeleteObject
CreatePalette
GetTextMetricsA
SaveDC
GetPixel
DeleteDC

user32

GetDesktopWindow
GetParent
CharNextA
GetDC
TranslateMessage
GetSystemMetrics

kernel32

GlobalFindAtomW
lstrcmpA
GlobalFindAtomA
QueryPerformanceCounter
GetCurrentThread
RemoveDirectoryA
GetModuleHandleA
GetCurrentProcessId
GetCurrentThreadId
GetConsoleOutputCP
DeleteFileW
GetProcessHeap
GetCurrentProcess
GetTickCount
GetWindowsDirectoryA
CopyFileA
GetCommandLineW
GetStartupInfoA
GetModuleHandleW
MulDiv
GetThreadLocale
GetUserDefaultLangID
SetCurrentDirectoryA
lstrlenA
lstrcmpiA
lstrlenW
VirtualAlloc
GetVersion
VirtualFree
lstrcmpiW
GetACP
DeleteFileA
GetCommandLineA
IsDebuggerPresent
GetOEMCP
GetDriveTypeA

glu32

gluNurbsCallback

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Abmlv. T
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Djdapm R
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1097b1db5e99f2d1db22a4987c4f9a97

Headers

File Characteristics

Imports

gdi32

user32

kernel32

glu32

Sections

.text Size: 11KB - Virtual size: 11KB

Abmlv. T Size: 512B - Virtual size: 4KB

.rdata Size: 26KB - Virtual size: 26KB

Djdapm R Size: 512B - Virtual size: 4KB

.data Size: 100KB - Virtual size: 99KB

.rsrc Size: 29KB - Virtual size: 28KB

.text
Size: 11KB - Virtual size: 11KB

Abmlv. T
Size: 512B - Virtual size: 4KB

.rdata
Size: 26KB - Virtual size: 26KB

Djdapm R
Size: 512B - Virtual size: 4KB

.data
Size: 100KB - Virtual size: 99KB

.rsrc
Size: 29KB - Virtual size: 28KB