6984768864fd34ed39d5608e7560dc8b_JaffaCakes118

General

Target

6984768864fd34ed39d5608e7560dc8b_JaffaCakes118
Size

112KB
MD5

6984768864fd34ed39d5608e7560dc8b
SHA1

fd8dfa220a6b881cda83bda79104eb5237159e2a
SHA256

161e399d18266936e253b995d7f97b5040530acf7b246302cb59d2d9c39be338
SHA512

66258e927dab95386762d0ca51e14b4dee6aeccf58f42129e348e12a4413bd21829d40e53b62dd1b9b7594d84c30fa415bd30dfcfa434e09918d0af38886043e
SSDEEP

1536:oeNuEy3/enIbd2/AB2fEVs9JpKwHcma8mVWimCyAq5VQzp5U:o/3Gpos4WPtHcma8mVW25q5kp5U

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6984768864fd34ed39d5608e7560dc8b_JaffaCakes118

Files

6984768864fd34ed39d5608e7560dc8b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7ace0b9ccab1d587c926c87c69c44d27

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetMapMode
CreatePen
SetTextColor
SelectPalette
GetTextMetricsA
DeleteDC
GetDeviceCaps
RestoreDC
CreateCompatibleDC
SetTextAlign
CreatePalette
PatBlt
CreateSolidBrush
CreateFontIndirectA
SetStretchBltMode
SaveDC
DeleteObject
GetStockObject
GetObjectA
SetPixel
GetPixel
LineTo
SelectObject
GetClipBox
RectVisible

user32

CharNextA
TranslateMessage
GetSystemMetrics
GetDesktopWindow
GetParent

kernel32

DeleteFileW
GetOEMCP
lstrcmpiA
QueryPerformanceCounter
GetCurrentProcessId
lstrcmpiW
GetVersion
GetCurrentThread
GetUserDefaultLangID
GetACP
CopyFileA
RemoveDirectoryA
GetConsoleOutputCP
GetModuleHandleA
GetThreadLocale
RemoveDirectoryW
IsDebuggerPresent
lstrlenA
SetCurrentDirectoryA
GetTickCount
GetStartupInfoA
DeleteFileA
GetProcessHeap
GetDriveTypeA
GlobalFindAtomA
GetCommandLineW
GetModuleHandleW
GetCurrentProcess
MulDiv
GetCommandLineA
GetWindowsDirectoryA
lstrcmpA
VirtualAlloc
GetCurrentThreadId
VirtualFree

glu32

gluQuadricCallback

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 79KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7ace0b9ccab1d587c926c87c69c44d27

Headers

File Characteristics

Imports

gdi32

user32

kernel32

glu32

Sections

.text Size: 13KB - Virtual size: 13KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 79KB - Virtual size: 78KB

.rsrc Size: 12KB - Virtual size: 11KB

.text
Size: 13KB - Virtual size: 13KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 79KB - Virtual size: 78KB

.rsrc
Size: 12KB - Virtual size: 11KB