5bb0b21b95ba161a0cf62a89ac049511_JaffaCakes118

General

Target

5bb0b21b95ba161a0cf62a89ac049511_JaffaCakes118
Size

100KB
MD5

5bb0b21b95ba161a0cf62a89ac049511
SHA1

d864803819ad2b90e062a83f8fc07bdf45df7678
SHA256

3449deacee6813d22e74e7cc05298ff7145ef8fe91a2fe0819c15a2512812673
SHA512

2daed5e83d26adebb03d74091c5fb1d696e25e9571f40774b7817259c6560ee662c68deef3f8415b75ad23d0158145c642e6e68dc9f844646046d687c5ce68c7
SSDEEP

1536:NmT2GfrcQdMfihibaYUZO80ECQw7yYIcriNq4kZAb8fcUXojwsOJ:8HwQdkaYU6ECh+giNq4kunj7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5bb0b21b95ba161a0cf62a89ac049511_JaffaCakes118

Files

5bb0b21b95ba161a0cf62a89ac049511_JaffaCakes118
.exe windows:5 windows x86 arch:x86

daaddcb3ae7cb307056dbd9ec0f53a01

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDC
GetParent
CharNextA
TranslateMessage
GetSystemMetrics
GetDesktopWindow

kernel32

lstrcmpiW
GetUserDefaultLangID
lstrcmpiA
lstrcmpA
DeleteFileW
RemoveDirectoryA
lstrlenW
GetCurrentProcess
QueryPerformanceCounter
GetProcessHeap
GetThreadLocale
GetCurrentProcessId
lstrlenA
IsDebuggerPresent
GetConsoleOutputCP
GlobalFindAtomW
GetWindowsDirectoryA
SetCurrentDirectoryA
GetOEMCP
GetCurrentThread
GetModuleHandleA
CopyFileA
GetCommandLineW
DeleteFileA
GlobalFindAtomA
GetModuleHandleW
GetCurrentThreadId
GetDriveTypeA
GetTickCount
VirtualAlloc
GetCommandLineA
RemoveDirectoryW
MulDiv
GetACP
ExitProcess
GetVersion

gdi32

GetClipBox
SetStretchBltMode
GetPixel
CreateSolidBrush
LineTo
PatBlt
CreateFontIndirectA
DeleteObject
SetMapMode
DeleteDC
GetDeviceCaps
GetObjectA
SetTextColor
CreatePalette
RectVisible
SelectPalette
CreateCompatibleDC
SetTextAlign
SaveDC
CreatePen
RestoreDC
GetStockObject
GetTextMetricsA
GetNearestPaletteIndex
SelectObject

glu32

gluQuadricCallback

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

daaddcb3ae7cb307056dbd9ec0f53a01

Headers

File Characteristics

Imports

user32

kernel32

gdi32

glu32

Sections

.text Size: 21KB - Virtual size: 20KB

.data Size: 65KB - Virtual size: 64KB

.rsrc Size: 13KB - Virtual size: 13KB

.text
Size: 21KB - Virtual size: 20KB

.data
Size: 65KB - Virtual size: 64KB

.rsrc
Size: 13KB - Virtual size: 13KB