633f82f3f0423c897c334dee6d42aaee_JaffaCakes118

General

Target

633f82f3f0423c897c334dee6d42aaee_JaffaCakes118
Size

101KB
MD5

633f82f3f0423c897c334dee6d42aaee
SHA1

5ff0225d95884f8b845f5ed62a239176d2fb0ef4
SHA256

c3336e459e15fdc837b85fe5f1205f9288ff7ed9743f3a17523244d37940332a
SHA512

f47ac516dd6ea81b0353c0fd292d192a6093e0459b0af27d4926b1c89f05b090f0a563a210b6514914ec84a9372e152621a4f79177089dec6fc7665379c82701
SSDEEP

1536:6G4gNuQLCr9PT9h2v5cMUYWzo8QEyVORIBQuMk5O3edwn+ubFebFh8RSUZDlO:6MuQ29r9hYuc6IBQwcedw+qgcSUZh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
633f82f3f0423c897c334dee6d42aaee_JaffaCakes118

Files

633f82f3f0423c897c334dee6d42aaee_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8d6e00cfd07842b2132f6cb5c6bc72bd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThread
GetConsoleOutputCP
CopyFileA
GetModuleHandleW
RemoveDirectoryW
IsDebuggerPresent
GetVersion
GetTickCount
GetThreadLocale
GetWindowsDirectoryA
lstrcmpA
GetStartupInfoA
lstrlenA
SetCurrentDirectoryA
GetCommandLineA
lstrcmpiW
GetUserDefaultLangID
GetOEMCP
GetCommandLineW
GetModuleHandleA
ExitProcess
QueryPerformanceCounter
GetACP
lstrlenW
GetProcessHeap
lstrcmpiA
GlobalFindAtomA
GetDriveTypeA
GlobalFindAtomW
DeleteFileA
RemoveDirectoryA
MulDiv
GetCurrentProcess
GetCurrentProcessId
DeleteFileW
GetCurrentThreadId
VirtualAlloc

gdi32

SaveDC
DeleteDC
GetTextMetricsA
SetTextColor
GetNearestPaletteIndex
CreatePen
RectVisible
GetStockObject
CreateSolidBrush
GetDeviceCaps
RestoreDC
GetObjectA
SelectPalette
SetStretchBltMode
CreatePalette
CreateCompatibleDC
DeleteObject
CreateFontIndirectA
SetMapMode
GetPixel
SetTextAlign
LineTo
GetClipBox
SelectObject
PatBlt

user32

GetParent
CharNextA
GetDesktopWindow
GetDC
GetSystemMetrics
TranslateMessage

glu32

gluQuadricCallback

Sections

.text
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8d6e00cfd07842b2132f6cb5c6bc72bd

Headers

File Characteristics

Imports

kernel32

gdi32

user32

glu32

Sections

.text Size: 19KB - Virtual size: 19KB

.data Size: 65KB - Virtual size: 64KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 19KB - Virtual size: 19KB

.data
Size: 65KB - Virtual size: 64KB

.rsrc
Size: 16KB - Virtual size: 15KB