37d83bcd44c2667f87c9b6b5d6fb988c_JaffaCakes118

General

Target

37d83bcd44c2667f87c9b6b5d6fb988c_JaffaCakes118
Size

96KB
MD5

37d83bcd44c2667f87c9b6b5d6fb988c
SHA1

1d96dc2727671729d1e4a652ab32115fb50e2637
SHA256

9a4759d5f20a25b02bf698e7c0ddef6466c34e5f34d061dcd6264ef5acf3debe
SHA512

237d8bde9214d2026f33f51906632956964010de1e359257e2c1a6cf2f72e01bc0ea5e02c745837864f78083bbd102fcbc74f872f36ae3f8de29ef9bb37154c6
SSDEEP

1536:xq8jgLO/t7lW5sKTOfeXwjIDvpiyAwNeUJJc3iEwvXd:xq8jgLYlWSXfeXwjUjNVGS/X

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
37d83bcd44c2667f87c9b6b5d6fb988c_JaffaCakes118

Files

37d83bcd44c2667f87c9b6b5d6fb988c_JaffaCakes118
.exe windows:5 windows x86 arch:x86

ce60d3354afc7c56b3ff964dd61343b3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

TranslateMessage
GetParent
CharNextA
GetSystemMetrics
GetDC
GetDesktopWindow

gdi32

DeleteObject
GetStockObject
SelectPalette
CreateCompatibleDC
GetClipBox
SelectObject
SaveDC
CreatePalette
CreateFontIndirectA
CreatePen
RestoreDC
GetPixel
LineTo
SetMapMode
SetTextAlign
SetTextColor
DeleteDC
GetTextMetricsA
CreateSolidBrush
SetStretchBltMode
GetObjectA
GetNearestPaletteIndex
RectVisible
PatBlt
GetDeviceCaps

kernel32

GetCurrentThreadId
GetProcessHeap
GetModuleHandleA
SetCurrentDirectoryA
GetCurrentProcessId
lstrlenW
RemoveDirectoryA
GetThreadLocale
CopyFileA
IsDebuggerPresent
GetUserDefaultLangID
GetCurrentThread
lstrcmpiW
GetDriveTypeA
GetModuleHandleW
lstrcmpA
DeleteFileA
GetCommandLineW
MulDiv
GetOEMCP
GetVersion
GetCommandLineA
GetStartupInfoA
lstrlenA
QueryPerformanceCounter
RemoveDirectoryW
GetConsoleOutputCP
DeleteFileW
lstrcmpiA
GlobalFindAtomA
GetCurrentProcess
GetACP
ExitProcess
GetTickCount
VirtualAlloc
VirtualFree

glu32

gluQuadricCallback

Sections

.text
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 61KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ce60d3354afc7c56b3ff964dd61343b3

Headers

File Characteristics

Imports

user32

gdi32

kernel32

glu32

Sections

.text Size: 19KB - Virtual size: 18KB

.data Size: 61KB - Virtual size: 60KB

.rsrc Size: 15KB - Virtual size: 14KB

.text
Size: 19KB - Virtual size: 18KB

.data
Size: 61KB - Virtual size: 60KB

.rsrc
Size: 15KB - Virtual size: 14KB