3ca46bf1148ed915aaa6fb47e22855f4_JaffaCakes118

General

Target

3ca46bf1148ed915aaa6fb47e22855f4_JaffaCakes118
Size

97KB
MD5

3ca46bf1148ed915aaa6fb47e22855f4
SHA1

ee0503705a9e3b2c7e5a96113a7cab47f32e011e
SHA256

d946619dad86d59b2a628629e5040715dfb91036ff2d52a1729db0803358fc54
SHA512

976a3f5ac1554954251f4f591d5226a044d6e0c97ffb9b0b4c394522c24138343f2b194cc54cbc9153b961bbcd12aafa01c39cacb187d96fcee95f6fdd19c781
SSDEEP

1536:XYBuTbm02HdSGY9cUbL9+4we1P40UZ5mWbEncI2JLoZ7vHfbC3z+Sa:XhbySGY9cy9w70UZz+2VODiz+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3ca46bf1148ed915aaa6fb47e22855f4_JaffaCakes118

Files

3ca46bf1148ed915aaa6fb47e22855f4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

caa8648b88f78aab783100d3646045d4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDesktopWindow
TranslateMessage
CharNextA
GetParent
GetSystemMetrics
GetDC

gdi32

GetPixel
SetTextColor
DeleteDC
GetTextMetricsA
RectVisible
GetClipBox
CreateCompatibleDC
DeleteObject
GetObjectA
GetStockObject
PatBlt
SelectPalette
CreateFontIndirectA
LineTo
CreatePalette
RestoreDC
CreateSolidBrush
GetDeviceCaps
SetTextAlign
SaveDC
SelectObject
SetMapMode
GetNearestPaletteIndex
CreatePen
SetStretchBltMode

kernel32

GetOEMCP
VirtualAlloc
GetUserDefaultLangID
GetVersion
GetCurrentThread
GetModuleHandleW
GetWindowsDirectoryA
GetCommandLineW
SetCurrentDirectoryA
GetThreadLocale
DeleteFileA
GetTickCount
lstrcmpiA
GetCurrentThreadId
CopyFileA
GetACP
RemoveDirectoryA
GlobalFindAtomA
GetDriveTypeA
lstrcmpA
GetCommandLineA
MulDiv
GetProcessHeap
lstrlenW
DeleteFileW
QueryPerformanceCounter
lstrlenA
lstrcmpiW
GetStartupInfoA
GetCurrentProcessId
GetCurrentProcess
RemoveDirectoryW
GetModuleHandleA
IsDebuggerPresent
GlobalFindAtomW
ExitProcess
GetConsoleOutputCP

glu32

gluQuadricCallback

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

caa8648b88f78aab783100d3646045d4

Headers

File Characteristics

Imports

user32

gdi32

kernel32

glu32

Sections

.text Size: 20KB - Virtual size: 19KB

.data Size: 62KB - Virtual size: 61KB

.rsrc Size: 14KB - Virtual size: 13KB

.text
Size: 20KB - Virtual size: 19KB

.data
Size: 62KB - Virtual size: 61KB

.rsrc
Size: 14KB - Virtual size: 13KB