31e1a9884a432047d22b7a8d709a08df_JaffaCakes118

General

Target

31e1a9884a432047d22b7a8d709a08df_JaffaCakes118
Size

93KB
MD5

31e1a9884a432047d22b7a8d709a08df
SHA1

90e8aff4090b7948db23eb6a0e8c58a6abb72e81
SHA256

305b507fbd1d978008484c44174e41ba28be6534ef63646a76aec123c85bc4e1
SHA512

35855a27e0c022caf7219970d288c004778571177922c63d74d18e68e9f8bc6a23da2ace4a22ae292f3c379c712964c5dc933fae8ea3e50bd8c099efbc15ebfb
SSDEEP

1536:nhBFhJKJ/N8uHDmqef9dVLM/ZA9FFgTmfv31XyJwcd8moBfeT0b/vFDf:nhbi/83b7VUZAjX7FfykB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
31e1a9884a432047d22b7a8d709a08df_JaffaCakes118

Files

31e1a9884a432047d22b7a8d709a08df_JaffaCakes118
.exe windows:4 windows x86 arch:x86

cdbf3502037880f302186fb5c1fbf25d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharNextA
TranslateMessage
GetParent
GetSystemMetrics
GetDesktopWindow
GetDC

kernel32

GetCommandLineA
GetOEMCP
GetVersion
GetCurrentThread
GetThreadLocale
DeleteFileW
CopyFileA
GetStartupInfoA
GetDriveTypeA
GlobalFindAtomW
GetModuleHandleA
GetWindowsDirectoryA
SetCurrentDirectoryA
GetCurrentThreadId
QueryPerformanceCounter
lstrcmpA
GetConsoleOutputCP
GetCurrentProcessId
lstrcmpiW
GetCurrentProcess
IsDebuggerPresent
MulDiv
GetACP
GetTickCount
GetProcessHeap
GetUserDefaultLangID
DeleteFileA
RemoveDirectoryA
lstrlenW
GlobalFindAtomA
GetModuleHandleW
lstrcmpiA
RemoveDirectoryW
lstrlenA
ExitProcess
GetCommandLineW
VirtualAlloc
VirtualFree

gdi32

CreateSolidBrush
SetTextColor
CreateFontIndirectA
CreateCompatibleDC
PatBlt
RectVisible
DeleteObject
GetClipBox
CreatePen
SelectPalette
SelectObject
DeleteDC
GetStockObject
SetMapMode
CreatePalette
SaveDC
SetTextAlign
GetPixel
LineTo
GetDeviceCaps
SetStretchBltMode
GetObjectA
RestoreDC
GetTextMetricsA
GetNearestPaletteIndex

glu32

gluQuadricCallback

Sections

.text
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cdbf3502037880f302186fb5c1fbf25d

Headers

File Characteristics

Imports

user32

kernel32

gdi32

glu32

Sections

.text Size: 19KB - Virtual size: 19KB

.data Size: 60KB - Virtual size: 60KB

.rsrc Size: 12KB - Virtual size: 11KB

.text
Size: 19KB - Virtual size: 19KB

.data
Size: 60KB - Virtual size: 60KB

.rsrc
Size: 12KB - Virtual size: 11KB