377ed6c58bc4173c85336ac42eb4a04a_JaffaCakes118

General

Target

377ed6c58bc4173c85336ac42eb4a04a_JaffaCakes118
Size

111KB
MD5

377ed6c58bc4173c85336ac42eb4a04a
SHA1

985a3ea10f6e6b3af0cf7805e808fcfa48faa472
SHA256

b5e74342277303ebea0235c869d99eef0fb8ca9a16b101ecbf1a2ddc59c71bb7
SHA512

1b431b8e8bdc9997fa419ccae683984db7425ebf3b22f24e26d512cb0a32109922b82831f0e69ff77c19cc8ead6f2d07809b9c25fa43b59243be89d920c71ed5
SSDEEP

1536:UIQRQNCquhxiBxFoxf+t77nNPq5hZS8zvlV+NQFEAisE/HgUTdGn:w+oqoiS5+tn+rSglV+NfJgydG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
377ed6c58bc4173c85336ac42eb4a04a_JaffaCakes118

Files

377ed6c58bc4173c85336ac42eb4a04a_JaffaCakes118
.exe windows:5 windows x86 arch:x86

10100afc583d103924cec49f706836e4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetTextAlign
CreatePen
SetStretchBltMode
SaveDC
SelectPalette
DeleteObject
SetMapMode
GetDeviceCaps
RestoreDC
GetStockObject
LineTo
SetTextColor
GetClipBox
SelectObject
GetObjectA
CreateFontIndirectA
PatBlt
GetPixel
CreateCompatibleDC
GetTextMetricsA
CreateSolidBrush
SetPixel
RectVisible
DeleteDC
CreatePalette

kernel32

GetStartupInfoA
lstrcmpA
GetConsoleOutputCP
MulDiv
RemoveDirectoryA
DeleteFileW
GetThreadLocale
GetModuleHandleA
GetTickCount
DeleteFileA
GlobalFindAtomA
GetDriveTypeA
lstrcmpiW
GetACP
GetVersion
GetCommandLineW
QueryPerformanceCounter
SetCurrentDirectoryA
GlobalFindAtomW
lstrlenW
lstrlenA
lstrcmpiA
GetUserDefaultLangID
GetModuleHandleW
CopyFileA
VirtualAlloc
GetCurrentThread
GetCommandLineA
GetWindowsDirectoryA
VirtualFree
GetProcessHeap
GetCurrentThreadId
RemoveDirectoryW
GetCurrentProcessId
IsDebuggerPresent
GetCurrentProcess
GetOEMCP

user32

GetParent
GetDesktopWindow
TranslateMessage
GetSystemMetrics
CharNextA

glu32

gluQuadricCallback

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

10100afc583d103924cec49f706836e4

Headers

File Characteristics

Imports

gdi32

kernel32

user32

glu32

Sections

.text Size: 13KB - Virtual size: 13KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 79KB - Virtual size: 79KB

.rsrc Size: 10KB - Virtual size: 10KB

.text
Size: 13KB - Virtual size: 13KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 79KB - Virtual size: 79KB

.rsrc
Size: 10KB - Virtual size: 10KB