3bc6044c4ceb8327cb54e190f1f7e44c_JaffaCakes118

General

Target

3bc6044c4ceb8327cb54e190f1f7e44c_JaffaCakes118
Size

112KB
MD5

3bc6044c4ceb8327cb54e190f1f7e44c
SHA1

91ab6efed996ed920883efdc931051bf8e85ce69
SHA256

45fbcffbed02e2822482917071c334dbf44b864e62ff51117d5b0a425191e1a8
SHA512

d9c7942bd456f385bb5f15968f488807658c69f42acd63a2a26a9ee6fcee6c9dbbf6dabff4fa71e25eb8a7e41bc9846915287cb43275be05dafdfd8271284e2c
SSDEEP

3072:MK/kD8fGWN8ZrHZBxPAAMziPxAXrtP+/Uw:MK/kmn853MziPxA9+/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3bc6044c4ceb8327cb54e190f1f7e44c_JaffaCakes118

Files

3bc6044c4ceb8327cb54e190f1f7e44c_JaffaCakes118
.exe windows:5 windows x86 arch:x86

8d6711b41dd6d765c8fdd1cf9f94913f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetMapMode
PatBlt
RectVisible
SaveDC
SetTextColor
CreatePen
CreateSolidBrush
CreatePalette
GetClipBox
GetDeviceCaps
CreateCompatibleDC
SelectPalette
CreateFontIndirectA
DeleteDC
GetObjectA
SetStretchBltMode
SelectObject
GetStockObject
DeleteObject
GetPixel
RestoreDC
SetPixel
LineTo
SetTextAlign

user32

GetDesktopWindow
CharNextA
GetSystemMetrics
TranslateMessage
GetParent

kernel32

GetThreadLocale
lstrlenA
GetCurrentProcess
GetVersion
GetOEMCP
SetCurrentDirectoryA
GetWindowsDirectoryA
GetCommandLineA
GetCurrentThreadId
lstrlenW
lstrcmpiW
GetCommandLineW
DeleteFileW
GetProcessHeap
GetConsoleOutputCP
GetStartupInfoA
VirtualAlloc
GetCurrentProcessId
VirtualFree
DeleteFileA
GetTickCount
GetUserDefaultLangID
GetModuleHandleA
lstrcmpA
RemoveDirectoryW
GlobalFindAtomA
GetCurrentThread
RemoveDirectoryA
GlobalFindAtomW
GetModuleHandleW
QueryPerformanceCounter
CopyFileA
lstrcmpiA
IsDebuggerPresent
GetACP
MulDiv
GetDriveTypeA

glu32

gluQuadricCallback

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8d6711b41dd6d765c8fdd1cf9f94913f

Headers

File Characteristics

Imports

gdi32

user32

kernel32

glu32

Sections

.text Size: 13KB - Virtual size: 13KB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 79KB - Virtual size: 79KB

.rsrc Size: 11KB - Virtual size: 11KB

.text
Size: 13KB - Virtual size: 13KB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 79KB - Virtual size: 79KB

.rsrc
Size: 11KB - Virtual size: 11KB