3d111940a0f0354bbc14463223c2157c_JaffaCakes118

General

Target

3d111940a0f0354bbc14463223c2157c_JaffaCakes118
Size

114KB
MD5

3d111940a0f0354bbc14463223c2157c
SHA1

9c5bed26252ece4c14d2dd7838e360fa0f6e8a30
SHA256

1c49b49b08e0e72556573c9e88a7e886342be14e477206d40f5605b15b4e5599
SHA512

3db921523b1046f0271339fc5b8782a300915cfff2554ea4c7ecbc61ad5d6ef161d0958abfc0364db35a30a84708b5977be0fd8b3f5817453b02f239b7712a41
SSDEEP

3072:FuyIXKxvQ49N5XDaDFevUdwjVlTM9et6:Ail9jvUdcvz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3d111940a0f0354bbc14463223c2157c_JaffaCakes118

Files

3d111940a0f0354bbc14463223c2157c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

626be6cb0571f6930e98be5b35ff16b4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

DeleteObject
GetStockObject
RectVisible
CreatePen
SetStretchBltMode
GetTextMetricsA
DeleteDC
GetPixel
SelectObject
GetObjectA
CreateFontIndirectA
CreateCompatibleDC
SaveDC
LineTo
CreateSolidBrush
SetMapMode
RestoreDC
GetDeviceCaps
GetClipBox
CreatePalette
SetTextColor
SetTextAlign
SelectPalette
PatBlt
SetPixel

kernel32

lstrcmpA
GlobalFindAtomA
lstrcmpiW
lstrlenA
GetUserDefaultLangID
GetVersion
lstrlenW
GetCurrentThreadId
IsDebuggerPresent
GetACP
GlobalFindAtomW
GetProcessHeap
GetStartupInfoA
DeleteFileW
QueryPerformanceCounter
VirtualAlloc
lstrcmpiA
VirtualFree
GetOEMCP
GetCurrentThread
GetThreadLocale
GetModuleHandleW
MulDiv
GetDriveTypeA
GetCurrentProcess
CopyFileA
GetWindowsDirectoryA
GetTickCount
SetCurrentDirectoryA
DeleteFileA
GetCurrentProcessId
GetCommandLineW
GetConsoleOutputCP
GetCommandLineA
GetModuleHandleA
RemoveDirectoryA
RemoveDirectoryW

user32

GetDesktopWindow
CharNextA
TranslateMessage
GetSystemMetrics
GetParent

glu32

gluQuadricCallback

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

626be6cb0571f6930e98be5b35ff16b4

Headers

File Characteristics

Imports

gdi32

kernel32

user32

glu32

Sections

.text Size: 13KB - Virtual size: 13KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 80KB - Virtual size: 79KB

.rsrc Size: 13KB - Virtual size: 12KB

.text
Size: 13KB - Virtual size: 13KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 80KB - Virtual size: 79KB

.rsrc
Size: 13KB - Virtual size: 12KB