3a96f27a826475539b76a343a92610bf_JaffaCakes118

General

Target

3a96f27a826475539b76a343a92610bf_JaffaCakes118
Size

96KB
MD5

3a96f27a826475539b76a343a92610bf
SHA1

e54f8361de572fb55b9dfd80ef9f735f8877959c
SHA256

cf4e3fec7c6ef57ee686f445718e0fba0ef5de917c605fac46bc85d7061386c3
SHA512

7572cd523e70045557651ef0499e7cb2012bd0dd88a62256b11f7f2727a1facdec90dd3aed91597973e35830d7cc1fca0e57ef838839571f1a83c1c992921f51
SSDEEP

1536:N3GEJY3+7/wm91IULMK9syxK7txiOGboI18zo9HEXIMXPK0gZhF0YETxLXqak/a:NtJsGP4K8D3GNKyHWISy0gl0Y86bC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a96f27a826475539b76a343a92610bf_JaffaCakes118

Files

3a96f27a826475539b76a343a92610bf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

eba6873345bcf4707837c10b047bfad2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDesktopWindow
TranslateMessage
GetSystemMetrics
GetParent
CharNextA
GetDC

gdi32

CreatePalette
GetPixel
DeleteDC
SelectObject
SetTextColor
GetStockObject
SelectPalette
GetObjectA
GetDeviceCaps
SetMapMode
SaveDC
GetTextMetricsA
LineTo
DeleteObject
PatBlt
RectVisible
CreateCompatibleDC
CreateFontIndirectA
SetTextAlign
SetStretchBltMode
RestoreDC
CreateSolidBrush
CreatePen
GetClipBox
GetNearestPaletteIndex

kernel32

GetCommandLineW
GetDriveTypeA
GetUserDefaultLangID
GetWindowsDirectoryA
GlobalFindAtomA
lstrlenA
GetCurrentThread
DeleteFileW
SetCurrentDirectoryA
GetStartupInfoA
GetCurrentThreadId
GetOEMCP
GetModuleHandleA
GetConsoleOutputCP
lstrlenW
lstrcmpiW
IsDebuggerPresent
GetCurrentProcess
GetTickCount
QueryPerformanceCounter
CopyFileA
GetThreadLocale
lstrcmpA
GetACP
GetProcessHeap
GetCommandLineA
GlobalFindAtomW
GetModuleHandleW
GetVersion
DeleteFileA
MulDiv
lstrcmpiA
RemoveDirectoryW
GetCurrentProcessId
ExitProcess
VirtualAlloc
VirtualFree

glu32

gluQuadricCallback

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 61KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

eba6873345bcf4707837c10b047bfad2

Headers

File Characteristics

Imports

user32

gdi32

kernel32

glu32

Sections

.text Size: 20KB - Virtual size: 20KB

.data Size: 61KB - Virtual size: 60KB

.rsrc Size: 14KB - Virtual size: 13KB

.text
Size: 20KB - Virtual size: 20KB

.data
Size: 61KB - Virtual size: 60KB

.rsrc
Size: 14KB - Virtual size: 13KB