76190e62b5ac900f72e20e946acd1c0f_JaffaCakes118

General

Target

76190e62b5ac900f72e20e946acd1c0f_JaffaCakes118
Size

97KB
MD5

76190e62b5ac900f72e20e946acd1c0f
SHA1

8f0d7ca76f90b3b7d6308076a1c2ad6c9afd98bb
SHA256

70730eaadb3da97a1b28c946d536e20938d0ca6e89628f19c2ef0994df13d73e
SHA512

9d3a4159147cb2a249e26ac434915391131285287a64bcf9d4005b32d968089cf30eb6921176aa53fc2a44730a751f9ca56f04a837c2ce5ec761b803d2f9f801
SSDEEP

1536:2XQFtoi2qEk29r0zXngYPQtyZx3cuGPL8cKzONJo7LT8rMmn7X:2XUtoi2vcgYPDTcu6OgJo3Tpmn7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
76190e62b5ac900f72e20e946acd1c0f_JaffaCakes118

Files

76190e62b5ac900f72e20e946acd1c0f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

4ba73bb6ab8dd2a6e83b72411202b1f8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetCurrentDirectoryA
GlobalFindAtomA
GetModuleHandleW
GetCurrentThreadId
GetWindowsDirectoryA
CopyFileA
lstrcmpiA
IsDebuggerPresent
GetProcessHeap
DeleteFileW
GetUserDefaultLangID
RemoveDirectoryA
GetConsoleOutputCP
QueryPerformanceCounter
VirtualAlloc
GlobalFindAtomW
GetStartupInfoA
lstrcmpiW
GetOEMCP
GetCommandLineW
GetCurrentThread
VirtualFree
GetCommandLineA
GetVersion
RemoveDirectoryW
GetModuleHandleA
GetDriveTypeA
MulDiv
lstrcmpA
GetCurrentProcessId
DeleteFileA
lstrlenW
GetThreadLocale
GetACP
GetTickCount
ExitProcess
GetCurrentProcess
lstrlenA

user32

GetDC
TranslateMessage
CharNextA
GetParent
GetDesktopWindow
GetSystemMetrics

gdi32

RectVisible
GetTextMetricsA
LineTo
CreatePalette
CreateFontIndirectA
SaveDC
PatBlt
CreateSolidBrush
GetClipBox
CreatePen
GetPixel
SetTextColor
DeleteObject
SelectObject
SelectPalette
GetNearestPaletteIndex
GetDeviceCaps
GetStockObject
CreateCompatibleDC
RestoreDC
SetStretchBltMode
DeleteDC
SetTextAlign
SetMapMode
GetObjectA

glu32

gluQuadricCallback

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4ba73bb6ab8dd2a6e83b72411202b1f8

Headers

File Characteristics

Imports

kernel32

user32

gdi32

glu32

Sections

.text Size: 20KB - Virtual size: 20KB

.data Size: 60KB - Virtual size: 60KB

.rsrc Size: 15KB - Virtual size: 15KB

.text
Size: 20KB - Virtual size: 20KB

.data
Size: 60KB - Virtual size: 60KB

.rsrc
Size: 15KB - Virtual size: 15KB