4dc3c96716cace0c4b224d8d693787ec_JaffaCakes118

General

Target

4dc3c96716cace0c4b224d8d693787ec_JaffaCakes118
Size

111KB
MD5

4dc3c96716cace0c4b224d8d693787ec
SHA1

e79e13befc86e03aa521d4a199dc82f1291f9e3b
SHA256

3b6279b5d9eb46286e60d7ce12d097434e19ffed5eb711777b040b4bdd138c3d
SHA512

f84f23d9048c859daca99a94697773b142890e7ba8e66fadca620e5ad4a71a8b19f5fd30f4961be263aacd5a28e8417b8b299e93607e94c73a96643bf3ea7322
SSDEEP

3072:lQEhSIhd90l4VEywmL/IqYkYMCATGlk3:BhS+/alWMn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4dc3c96716cace0c4b224d8d693787ec_JaffaCakes118

Files

4dc3c96716cace0c4b224d8d693787ec_JaffaCakes118
.exe windows:5 windows x86 arch:x86

0f596905881d2aa81a844e34be3b3d92

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetTextMetricsA
CreateCompatibleDC
CreateFontIndirectA
GetPixel
SelectObject
SetTextColor
CreateSolidBrush
DeleteObject
GetClipBox
RestoreDC
PatBlt
CreatePen
SetMapMode
LineTo
SetTextAlign
DeleteDC
SaveDC
GetStockObject
GetObjectA
SetStretchBltMode
RectVisible
CreatePalette
GetNearestPaletteIndex
SelectPalette
GetDeviceCaps

kernel32

GetOEMCP
SetCurrentDirectoryA
GetUserDefaultLangID
MulDiv
GetCurrentThread
lstrcmpiW
QueryPerformanceCounter
lstrlenW
GetWindowsDirectoryA
GetStartupInfoA
DeleteFileW
GetCurrentProcessId
GetVersion
GetModuleHandleW
lstrcmpA
GetCurrentProcess
lstrlenA
GetThreadLocale
GlobalFindAtomA
GetACP
RemoveDirectoryA
GetProcessHeap
GetModuleHandleA
GetCommandLineA
GlobalFindAtomW
GetCommandLineW
GetConsoleOutputCP
IsDebuggerPresent
GetTickCount
lstrcmpiA
GetCurrentThreadId
CopyFileA
DeleteFileA
RemoveDirectoryW
ExitProcess
GetDriveTypeA
VirtualAlloc

user32

CharNextA
GetParent
TranslateMessage
GetDesktopWindow
GetDC
GetSystemMetrics

glu32

gluQuadricCallback

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 73KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0f596905881d2aa81a844e34be3b3d92

Headers

File Characteristics

Imports

gdi32

kernel32

user32

glu32

Sections

.text Size: 20KB - Virtual size: 19KB

.data Size: 73KB - Virtual size: 72KB

.rsrc Size: 17KB - Virtual size: 92KB

.text
Size: 20KB - Virtual size: 19KB

.data
Size: 73KB - Virtual size: 72KB

.rsrc
Size: 17KB - Virtual size: 92KB