3a8bf88deaddc682542a4a9d2eae6138_JaffaCakes118

General

Target

3a8bf88deaddc682542a4a9d2eae6138_JaffaCakes118
Size

114KB
MD5

3a8bf88deaddc682542a4a9d2eae6138
SHA1

287194d352b08527b28259ab4283a8e0f38927cb
SHA256

ca57ab23fa80351d3724eacaf1b3e5aae8e76313bd61243d9b4c0e00075ae3c7
SHA512

505826f47a073a858a81ed1a647d635449d7663f974c4c10a1f2bd52cb98c9152c57d02db437c614bef575099387c8a0d3514c409c553284eb41f27316c31f9f
SSDEEP

1536:e8D801j1A6je8roxjLK6OVViCvnMHI0c4C9A/P5U8dN17UCChet6pF1c6KhS:egRNed0HsI0cn9A/Pi8dzaheCY6Kh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a8bf88deaddc682542a4a9d2eae6138_JaffaCakes118

Files

3a8bf88deaddc682542a4a9d2eae6138_JaffaCakes118
.exe windows:4 windows x86 arch:x86

14c9bf06c5455d67132a186bbaa60ca1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
GetVersion
lstrcmpA
GetCurrentThread
GetACP
lstrcmpiW
GetConsoleOutputCP
GetModuleHandleW
GetCurrentProcess
lstrcmpiA
GlobalFindAtomA
RemoveDirectoryW
lstrlenA
SetCurrentDirectoryA
DeleteFileW
GetCurrentProcessId
GetCommandLineA
lstrlenW
QueryPerformanceCounter
MulDiv
CopyFileA
GetDriveTypeA
GetModuleHandleA
GetOEMCP
IsDebuggerPresent
GetProcessHeap
GetThreadLocale
RemoveDirectoryA
GetWindowsDirectoryA
GetTickCount
GetUserDefaultLangID
GetCurrentThreadId
GetStartupInfoA
GetCommandLineW
GlobalFindAtomW
VirtualAlloc
VirtualFree

user32

GetSystemMetrics
GetParent
TranslateMessage
CharNextA
GetDesktopWindow

gdi32

PatBlt
SetStretchBltMode
SetTextAlign
RectVisible
GetDeviceCaps
SelectPalette
CreatePen
SetPixel
GetPixel
GetClipBox
GetObjectA
DeleteDC
DeleteObject
LineTo
GetTextMetricsA
SetTextColor
SaveDC
RestoreDC
GetStockObject
CreateSolidBrush
CreatePalette
CreateCompatibleDC
SelectObject
SetMapMode
CreateFontIndirectA

glu32

gluQuadricCallback

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 79KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

14c9bf06c5455d67132a186bbaa60ca1

Headers

File Characteristics

Imports

kernel32

user32

gdi32

glu32

Sections

.text Size: 12KB - Virtual size: 11KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 79KB - Virtual size: 78KB

.rsrc Size: 15KB - Virtual size: 14KB

.text
Size: 12KB - Virtual size: 11KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 79KB - Virtual size: 78KB

.rsrc
Size: 15KB - Virtual size: 14KB