5ab81e071a29d73ec7b2a19802e49b8b_JaffaCakes118

General

Target

5ab81e071a29d73ec7b2a19802e49b8b_JaffaCakes118
Size

113KB
MD5

5ab81e071a29d73ec7b2a19802e49b8b
SHA1

95d9be5307015a5ee3705a711d56cd209461b94c
SHA256

23fd64170b0aafacc32b171e315cbd864df0cabfbd8e31f256aa31522ff258fc
SHA512

970723442ed15bc50ea3143374418c4c8f40b93aa76dced2e23e88bde1a99330b7d926dd12ac38ffc73435da82a95f3f05b178d6cb8be3e532652688e8dd2bd4
SSDEEP

3072:x2blqfONl9gjn1K85j46Y3SEiAXENrOSF0hF/XfFi+Mfuuakz:xGl+cejnP5j3ySAXENrOSF0XP5P

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5ab81e071a29d73ec7b2a19802e49b8b_JaffaCakes118

Files

5ab81e071a29d73ec7b2a19802e49b8b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

85cbfc5d1d4024421d4c3e85c87a36ae

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetStockObject
RestoreDC
GetClipBox
CreatePalette
DeleteDC
SelectObject
SetTextColor
SelectPalette
GetObjectA
SaveDC
SetStretchBltMode
SetMapMode
GetTextMetricsA
GetPixel
RectVisible
CreateCompatibleDC
PatBlt
GetDeviceCaps
DeleteObject
CreateSolidBrush
CreatePen
SetTextAlign
CreateFontIndirectA
LineTo
SetPixel

kernel32

DeleteFileW
DeleteFileA
GetModuleHandleW
GlobalFindAtomW
GetConsoleOutputCP
RemoveDirectoryA
lstrlenW
GetDriveTypeA
CopyFileA
IsDebuggerPresent
GetWindowsDirectoryA
GetUserDefaultLangID
GetTickCount
GetStartupInfoA
VirtualAlloc
GetCurrentProcess
GetCurrentThreadId
VirtualFree
lstrlenA
QueryPerformanceCounter
lstrcmpiW
GetCommandLineA
GetCurrentThread
GetVersion
GetACP
GetOEMCP
GetProcessHeap
GlobalFindAtomA
SetCurrentDirectoryA
GetCurrentProcessId
GetCommandLineW
GetThreadLocale
MulDiv
lstrcmpA
RemoveDirectoryW

user32

GetDesktopWindow
TranslateMessage
GetSystemMetrics
CharNextA
GetParent

glu32

gluQuadricCallback

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

85cbfc5d1d4024421d4c3e85c87a36ae

Headers

File Characteristics

Imports

gdi32

kernel32

user32

glu32

Sections

.text Size: 13KB - Virtual size: 12KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 79KB - Virtual size: 79KB

.rsrc Size: 13KB - Virtual size: 12KB

.text
Size: 13KB - Virtual size: 12KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 79KB - Virtual size: 79KB

.rsrc
Size: 13KB - Virtual size: 12KB