5cb78fd7ee3f1e9d6a274c2ba1b471c7_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

5cb78fd7ee3f1e9d6a274c2ba1b471c7_JaffaCakes118
Size

171KB
MD5

5cb78fd7ee3f1e9d6a274c2ba1b471c7
SHA1

82c9d50bfa32cd3d584920ae12ea5037c2a9c7a7
SHA256

485719d4009798969cf4ba4500d315c38e44764fb618592f2b6dc8631dfe1a14
SHA512

d040b9c1833e3b187845d27b39487f51c3789a2bc81e45db7f0493e3c82873e930dc1b2c944bbda1cc64b555ea3c0c14367b8e36e5445fe545293d749af19cfd
SSDEEP

3072:ELCIbxQgNbUQvPS8BR+iQC00v0W4ZV18h8Yyyw7MOwgFnm8c513:EdQg7Te4w8YrwVj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5cb78fd7ee3f1e9d6a274c2ba1b471c7_JaffaCakes118

Files

5cb78fd7ee3f1e9d6a274c2ba1b471c7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5d86e6efa7eb68d1ab0a740bfac7ad2a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharNextA
TranslateMessage
GetDesktopWindow
GetParent
GetDC
GetSystemMetrics

gdi32

SaveDC
SetTextColor
GetDeviceCaps
SelectObject
GetClipBox
CreatePen
SetStretchBltMode
DeleteObject
CreateFontIndirectA
LineTo
SetTextAlign
CreateSolidBrush
GetTextMetricsA
SelectPalette
RestoreDC
GetStockObject
CreatePalette
GetPixel
SetMapMode
GetObjectA
DeleteDC
RectVisible
PatBlt
CreateCompatibleDC

kernel32

SetCurrentDirectoryA
GetCurrentProcess
GetACP
GetThreadLocale
lstrlenA
lstrcmpA
GetVersion
GetTickCount
DeleteFileA
GetCommandLineW
DeleteFileW
lstrcmpiW
MulDiv
GetModuleHandleA
GetCurrentThreadId
GetDriveTypeA
QueryPerformanceCounter
GlobalFindAtomA
lstrcmpiA
GlobalFindAtomW
IsDebuggerPresent
GetWindowsDirectoryA
GetCommandLineA
GetConsoleOutputCP
RemoveDirectoryA
lstrlenW
GetModuleHandleW
GetCurrentThread
VirtualAlloc
GetUserDefaultLangID
VirtualFree
GetCurrentProcessId
GetOEMCP
GetProcessHeap
CopyFileA
GetStartupInfoA

glu32

gluNurbsCallback

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Ckoay Rw
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Dsacnsuv
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5d86e6efa7eb68d1ab0a740bfac7ad2a

Headers

File Characteristics

Imports

user32

gdi32

kernel32

glu32

Sections

.text Size: 11KB - Virtual size: 10KB

Ckoay Rw Size: 512B - Virtual size: 4KB

.rdata Size: 25KB - Virtual size: 25KB

Dsacnsuv Size: 512B - Virtual size: 4KB

.data Size: 101KB - Virtual size: 101KB

.rsrc Size: 31KB - Virtual size: 30KB

.text
Size: 11KB - Virtual size: 10KB

Ckoay Rw
Size: 512B - Virtual size: 4KB

.rdata
Size: 25KB - Virtual size: 25KB

Dsacnsuv
Size: 512B - Virtual size: 4KB

.data
Size: 101KB - Virtual size: 101KB

.rsrc
Size: 31KB - Virtual size: 30KB