6ee84f2ca575936357be0be01770a3d6_JaffaCakes118

General

Target

6ee84f2ca575936357be0be01770a3d6_JaffaCakes118
Size

97KB
MD5

6ee84f2ca575936357be0be01770a3d6
SHA1

a97624ffbbf0673a78e775ef935630e249efc031
SHA256

d8966fd157d65392f00981bc5c9e6ef5de349c8c2b7de0969870eb3eeb2663cf
SHA512

5eb9c882256c890b3a24668f52e3bcec21ad2dc131e6a599883df7adce7924b0874e2fa5bbf5388f5cd90fe8ff515609f37a40bfa4eda2961f9bee1e6a05a7da
SSDEEP

1536:2ZroK7pryUFfPv+Gi4XQjdkYO6ZJqV0VqPHChCBFNZV6tV8ZA:+roKFrPs0QjOrGJq6MNr6o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6ee84f2ca575936357be0be01770a3d6_JaffaCakes118

Files

6ee84f2ca575936357be0be01770a3d6_JaffaCakes118
.exe windows:5 windows x86 arch:x86

1f5f1b79a7f4ada7951f847deda0afd3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetClipBox
SelectObject
CreatePen
LineTo
CreateSolidBrush
DeleteDC
RestoreDC
SetMapMode
CreateFontIndirectA
RectVisible
SetStretchBltMode
SetTextColor
GetPixel
CreateCompatibleDC
SetTextAlign
DeleteObject
CreatePalette
GetTextMetricsA
SelectPalette
GetDeviceCaps
PatBlt
SaveDC
GetStockObject
GetNearestPaletteIndex
GetObjectA

user32

TranslateMessage
GetSystemMetrics
GetDesktopWindow
GetParent
CharNextA
GetDC

kernel32

GlobalFindAtomA
CopyFileA
QueryPerformanceCounter
SetCurrentDirectoryA
MulDiv
GetProcessHeap
RemoveDirectoryA
GetWindowsDirectoryA
GetCurrentThreadId
GetCommandLineW
GlobalFindAtomW
IsDebuggerPresent
GetConsoleOutputCP
GetCurrentThread
GetStartupInfoA
GetTickCount
DeleteFileA
lstrcmpA
DeleteFileW
GetThreadLocale
GetModuleHandleW
GetOEMCP
GetACP
lstrlenW
GetCurrentProcessId
GetUserDefaultLangID
lstrlenA
GetCurrentProcess
GetCommandLineA
lstrcmpiW
GetModuleHandleA
RemoveDirectoryW
ExitProcess
lstrcmpiA
VirtualAlloc

glu32

gluQuadricCallback

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1f5f1b79a7f4ada7951f847deda0afd3

Headers

File Characteristics

Imports

gdi32

user32

kernel32

glu32

Sections

.text Size: 21KB - Virtual size: 21KB

.data Size: 63KB - Virtual size: 63KB

.rsrc Size: 11KB - Virtual size: 11KB

.text
Size: 21KB - Virtual size: 21KB

.data
Size: 63KB - Virtual size: 63KB

.rsrc
Size: 11KB - Virtual size: 11KB