693bfad7fd0f1fb4020310df639cf32b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

693bfad7fd0f1fb4020310df639cf32b_JaffaCakes118
Size

77KB
MD5

693bfad7fd0f1fb4020310df639cf32b
SHA1

8145df2af7753f43718812a1a4157a999b55916a
SHA256

b1c1df264734a0da69e9fdc7514f2beb4bf8cc5a8937153a15f3bde298087842
SHA512

5b23e408031bddf9930094608c9117f1fb82a85c29722397bdae0d2b6ab0b40e5716acc812c1bb15a7b71d040c43394b8ca6d9803840b250c8ace1683f2174f1
SSDEEP

1536:FObYgyDJrMdQKJr3NrQEDG7OoV4MXr5UVzKdjP306ykY2Qj/jmPczz2vFxOU:F46MiMGSoV4sr5UwjkSzQj/Eczy/R

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
693bfad7fd0f1fb4020310df639cf32b_JaffaCakes118

Files

693bfad7fd0f1fb4020310df639cf32b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d518f0f0cb31870d04a7fec1819139e1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FoldStringW
ExitProcess
GetProcessTimes
SystemTimeToTzSpecificLocalTime
CreatePipe
CopyFileA
GetStringTypeA
EndUpdateResourceA
SystemTimeToFileTime
SetFileTime
WriteProfileStringA
CopyFileExW
GetModuleHandleA
FoldStringA
QueryPerformanceCounter
OpenProfileUserMapping
GetModuleHandleW
GetTempFileNameW
AssignProcessToJobObject
VirtualAlloc
OpenFileMappingW
VirtualAlloc
VirtualFree
GetFileTime
SignalObjectAndWait
UnregisterWait
MapViewOfFileEx
GetTimeZoneInformation

msvcrt

_wtol
strcpy
_fpieee_flt
towupper
_access
_wspawnve
_ismbcspace
_execve
wcsftime
_mbclen
fscanf
_wstati64
log10
iswascii
_getdcwd
strncpy
freopen
?_query_new_mode@@YAHXZ
swscanf
ispunct

gdi32

LineTo
EqualRgn
GetTextExtentExPointW
GetPixel
GetNearestColor
CreateRectRgn
SetDIBitsToDevice
CreateRectRgnIndirect
CreateCompatibleDC
SetBkMode
SetDIBits
GetObjectW
CreatePatternBrush

opengl32

glRasterPos3i
glColor3ub
wglShareLists
glRasterPos2sv
glVertex4sv
glNormalPointer
glVertex4iv
glPixelMapusv
glTexCoord4f
glAccum
glColor4uiv
glEvalCoord1d
glVertex3fv
glDisableClientState
glColor3ubv

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xpi
Size: 1024B - Virtual size: 644B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ixp
Size: 512B - Virtual size: 17B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pixi
Size: 1024B - Virtual size: 836B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d518f0f0cb31870d04a7fec1819139e1

Headers

File Characteristics

Imports

kernel32

msvcrt

gdi32

opengl32

Sections

.text Size: 1KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 5KB - Virtual size: 4KB

.xpi Size: 1024B - Virtual size: 644B

.ixp Size: 512B - Virtual size: 17B

.pixi Size: 1024B - Virtual size: 836B

.rsrc Size: 63KB - Virtual size: 63KB

.reloc Size: 512B - Virtual size: 36B

.text
Size: 1KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 5KB - Virtual size: 4KB

.xpi
Size: 1024B - Virtual size: 644B

.ixp
Size: 512B - Virtual size: 17B

.pixi
Size: 1024B - Virtual size: 836B

.rsrc
Size: 63KB - Virtual size: 63KB

.reloc
Size: 512B - Virtual size: 36B