47f90dd3c2b3bd2c709a8f1967212aca_JaffaCakes118

General

Target

47f90dd3c2b3bd2c709a8f1967212aca_JaffaCakes118
Size

107KB
MD5

47f90dd3c2b3bd2c709a8f1967212aca
SHA1

855cbc08558a9b598decbc5f0af6e8672841de3a
SHA256

92380b527f8c7aeb0f3d3ab9286c6e88edad08084703f12a3c7f4152fb5e665a
SHA512

35fe8bb88b34b1de1b7e8990805fec5d5b9963e4637cfdcf1bfd8b35122fe3719db2b4336593e5d6fc30d60bdbce08fc4bb60f59dc136fa5a4af8f3c101274e0
SSDEEP

1536:3Re1mWIBQ2YEtN1ok2OADGArGqfiGYkU5c9M+4tXaqEqI6VI7xsrc/jbSwX5Pr31:3UxN23fV2dFGq02u/U6S7W0bPPjs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
47f90dd3c2b3bd2c709a8f1967212aca_JaffaCakes118

Files

47f90dd3c2b3bd2c709a8f1967212aca_JaffaCakes118
.exe windows:5 windows x86 arch:x86

c4aa4a52b55fdcaa6f5f8588764423bf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDesktopWindow
GetParent
GetSystemMetrics
CharNextA
GetDC
TranslateMessage

kernel32

DeleteFileA
MulDiv
GetCurrentProcessId
QueryPerformanceCounter
GlobalFindAtomW
IsDebuggerPresent
SetCurrentDirectoryA
GetWindowsDirectoryA
GetModuleHandleW
GetDriveTypeA
lstrlenA
GetCommandLineA
GetTickCount
GetThreadLocale
GetVersion
GetModuleHandleA
GetUserDefaultLangID
GetCurrentProcess
VirtualAlloc
lstrlenW
DeleteFileW
lstrcmpiW
GlobalFindAtomA
CopyFileA
GetOEMCP
GetStartupInfoA
GetCurrentThread
GetProcessHeap
GetCurrentThreadId
GetCommandLineW
RemoveDirectoryW
lstrcmpA
GetConsoleOutputCP
lstrcmpiA
ExitProcess
GetACP
RemoveDirectoryA

gdi32

SetTextColor
LineTo
SaveDC
RestoreDC
GetPixel
GetTextMetricsA
CreateFontIndirectA
SetStretchBltMode
PatBlt
SetMapMode
SelectPalette
GetObjectA
SelectObject
CreateCompatibleDC
DeleteDC
GetStockObject
GetClipBox
GetNearestPaletteIndex
DeleteObject
SetTextAlign
GetDeviceCaps
CreatePalette
CreatePen
CreateSolidBrush
RectVisible

glu32

gluQuadricCallback

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 71KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c4aa4a52b55fdcaa6f5f8588764423bf

Headers

File Characteristics

Imports

user32

kernel32

gdi32

glu32

Sections

.text Size: 21KB - Virtual size: 20KB

.data Size: 71KB - Virtual size: 71KB

.rsrc Size: 13KB - Virtual size: 13KB

.text
Size: 21KB - Virtual size: 20KB

.data
Size: 71KB - Virtual size: 71KB

.rsrc
Size: 13KB - Virtual size: 13KB