5f015b44238755e5869e8267906dba60_JaffaCakes118

General

Target

5f015b44238755e5869e8267906dba60_JaffaCakes118
Size

106KB
MD5

5f015b44238755e5869e8267906dba60
SHA1

0123329796a4919757eb51ea46d6e206a6ddf8e8
SHA256

089bf78eccd4029c43f54a15788b14e77c0ffa5a6ca059bf46c871c5e149aea4
SHA512

f68e2fd3713d5fd4cf43e0eff9ac5edf9071a010b552073a7ec59c46ae4f57eada522fd19a7916fca967c0c76c5c14604d90c196505e83a0f28c0cc588307304
SSDEEP

1536:lXsm9PNc/zdU3klhI01VLvgPWFnWREc6mOt1mAwaN/3LMUZQ0xJ1qAxPCQ:lcgklhIuCOZYEcNsmAh3LM+pxeA5z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5f015b44238755e5869e8267906dba60_JaffaCakes118

Files

5f015b44238755e5869e8267906dba60_JaffaCakes118
.exe windows:5 windows x86 arch:x86

71541d049bb15e986b91b36b8d93854b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetSystemMetrics
GetParent
TranslateMessage
GetDC
GetDesktopWindow
CharNextA

gdi32

DeleteObject
SetStretchBltMode
PatBlt
LineTo
CreateSolidBrush
GetPixel
CreateFontIndirectA
CreateCompatibleDC
CreatePalette
SaveDC
DeleteDC
SetTextColor
RectVisible
GetObjectA
SelectPalette
GetTextMetricsA
SetMapMode
GetStockObject
SetTextAlign
CreatePen
GetDeviceCaps
RestoreDC
GetNearestPaletteIndex
GetClipBox
SelectObject

kernel32

GetACP
GetModuleHandleA
GetStartupInfoA
lstrcmpiW
GetConsoleOutputCP
GetVersion
GlobalFindAtomA
CopyFileA
MulDiv
SetCurrentDirectoryA
GetWindowsDirectoryA
DeleteFileA
GetOEMCP
GetDriveTypeA
GetThreadLocale
GetCurrentProcessId
GetProcessHeap
GetCurrentThreadId
lstrlenA
IsDebuggerPresent
lstrlenW
GetUserDefaultLangID
GetModuleHandleW
GetTickCount
GlobalFindAtomW
GetCommandLineW
lstrcmpiA
GetCurrentProcess
lstrcmpA
DeleteFileW
RemoveDirectoryA
VirtualAlloc
RemoveDirectoryW
GetCurrentThread
QueryPerformanceCounter
GetCommandLineA
ExitProcess

glu32

gluQuadricCallback

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 71KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

jacbjoo
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: - Virtual size: 320KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

71541d049bb15e986b91b36b8d93854b

Headers

File Characteristics

Imports

user32

gdi32

kernel32

glu32

Sections

.text Size: 21KB - Virtual size: 21KB

.data Size: 71KB - Virtual size: 71KB

.rsrc Size: 12KB - Virtual size: 40KB

jacbjoo Size: - Virtual size: 4KB

.text Size: - Virtual size: 320KB

.text
Size: 21KB - Virtual size: 21KB

.data
Size: 71KB - Virtual size: 71KB

.rsrc
Size: 12KB - Virtual size: 40KB

jacbjoo
Size: - Virtual size: 4KB

.text
Size: - Virtual size: 320KB